Lucene search
AnonymousZDI-10-193HistoryOct 06, 2010 - 12:00 a.m.
Adobe Acrobat Reader Multimedia Playing Remote Code Execution Vulnerability
2010-10-0600:00:00
Anonymous
www.zerodayinitiative.com
23
0.174 Low
EPSS
Percentile
96.1%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the application explicitly trusting a string’s length embedded within a particular file format. The application will duplicate an arbitrarily sized string into a statically sized buffer located on the stack. This can lead to code execution under the context of the application.
Related
securityvulns
securityvulns
ZDI-10-193: Adobe Acrobat Reader Multimedia Playing Remote Code Execution Vulnerability
2010-10-06 00:00:00
Adobe Acrobat / Reader multiple security vulnerabilities
2010-10-08 00:00:00
Security updates available for Adobe Reader and Acrobat
2010-10-06 00:00:00
prion
prion
Memory corruption
2010-10-06 17:00:00
Memory corruption
2010-10-06 17:00:00
Memory corruption
2010-10-06 17:00:00
cvelist
cvelist
nvd
nvd
cve
cve
ubuntucve
ubuntucve
nessus
nessus
RHEL 4 / 5 : acroread (RHSA-2010:0743)
2010-10-07 00:00:00
Adobe Acrobat < 9.4 / 8.2.5 Multiple Vulnerabilities (APSB10-21)
2010-09-09 00:00:00
Adobe Reader < 9.4 / 8.2.5 Multiple Vulnerabilities (APSB10-21)
2010-09-09 00:00:00
redhat
redhat
(RHSA-2010:0743) Critical: acroread security update
2010-10-06 00:00:00
openvas
openvas
Adobe Acrobat and Reader Multiple Vulnerabilities (Oct 2010) - Windows
2010-10-18 00:00:00
Adobe Acrobat and Reader Multiple Vulnerabilities -Oct10 (Windows)
2010-10-18 00:00:00
Gentoo Security Advisory GLSA 201101-08 (acroread)
2011-03-09 00:00:00
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2011-01-21 00:00:00
suse
suse
remote code execution in acroread
2010-10-11 17:38:18