CVE-2010-1241

Heap-based buffer overflow in the custom heap management system in Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document, aka FG-VD-10-005.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
VendorProductVersion
adobeacrobat_reader
8.0
adobeacrobat_reader
8.1
adobeacrobat_reader
8.1.1
adobeacrobat_reader
8.1.2
adobeacrobat_reader
8.1.4
adobeacrobat_reader
8.1.5
adobeacrobat_reader
8.1.6
adobeacrobat_reader
8.1.7
adobeacrobat_reader
8.2
adobeacrobat_reader
8.2.1
adobeacrobat_reader
9.0
adobeacrobat_reader
9.1
adobeacrobat_reader
9.1.1
adobeacrobat_reader
9.1.2
adobeacrobat_reader
9.1.3
adobeacrobat_reader
9.2
adobeacrobat_reader
9.3
adobeacrobat_reader
9.3.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
acroread
karmic
Fixed 9.3.2-karmic1
released
jaunty
Fixed 9.3.2-jaunty1
released
intrepid
Fixed 9.3.2-intrepid1
released
hardy
Fixed 9.3.2-1
released
dapper
ignored
Common Weakness Enumeration
References
http://blog.fortinet.com/the-upcoming-blackhat-europe-2010-presentation/
http://lists.immunitysec.com/pipermail/dailydave/2010-April/006077.html
http://www.adobe.com/support/security/bulletins/apsb10-09.html
http://www.blackhat.com/html/bh-eu-10/bh-eu-10-briefings.html#Li
http://www.securityfocus.com/bid/39227
http://www.securityfocus.com/bid/39329
http://www.us-cert.gov/cas/techalerts/TA10-103C.html
http://www.vupen.com/english/advisories/2010/0873
http://www.youtube.com/watch?v=9EVHtY1-0q8
https://exchange.xforce.ibmcloud.com/vulnerabilities/57589
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6940
http://blog.fortinet.com/the-upcoming-blackhat-europe-2010-presentation/
http://lists.immunitysec.com/pipermail/dailydave/2010-April/006077.html
http://www.adobe.com/support/security/bulletins/apsb10-09.html
http://www.blackhat.com/html/bh-eu-10/bh-eu-10-briefings.html#Li
http://www.securityfocus.com/bid/39227
http://www.securityfocus.com/bid/39329
http://www.us-cert.gov/cas/techalerts/TA10-103C.html
http://www.vupen.com/english/advisories/2010/0873
http://www.youtube.com/watch?v=9EVHtY1-0q8
https://exchange.xforce.ibmcloud.com/vulnerabilities/57589
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6940