CVE-2011-4369

EUVD-2011-4298
Unspecified vulnerability in the PRC component in Adobe Reader and Acrobat 9.x before 9.4.7 on Windows, Adobe Reader and Acrobat 9.x through 9.4.6 on Mac OS X, Adobe Reader and Acrobat 10.x through 10.1.1 on Windows and Mac OS X, and Adobe Reader 9.x through 9.4.6 on UNIX allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, as exploited in the wild in December 2011.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Affected Products (NVD)
VendorProductVersion
adobeacrobat
9.0
adobeacrobat
9.1
adobeacrobat
9.1.1
adobeacrobat
9.1.2
adobeacrobat
9.1.3
adobeacrobat
9.2
adobeacrobat
9.3
adobeacrobat
9.3.1
adobeacrobat
9.3.2
adobeacrobat
9.3.3
adobeacrobat
9.3.4
adobeacrobat
9.4
adobeacrobat
9.4.1
adobeacrobat
9.4.2
adobeacrobat
9.4.3
adobeacrobat
9.4.4
adobeacrobat
9.4.5
adobeacrobat
9.4.6
adobeacrobat_reader
9.0
adobeacrobat_reader
9.1
adobeacrobat_reader
9.1.1
adobeacrobat_reader
9.1.2
adobeacrobat_reader
9.1.3
adobeacrobat_reader
9.2
adobeacrobat_reader
9.3
adobeacrobat_reader
9.3.1
adobeacrobat_reader
9.3.2
adobeacrobat_reader
9.3.3
adobeacrobat_reader
9.3.4
adobeacrobat_reader
9.4
adobeacrobat_reader
9.4.1
adobeacrobat_reader
9.4.2
adobeacrobat_reader
9.4.3
adobeacrobat_reader
9.4.4
adobeacrobat_reader
9.4.5
adobeacrobat_reader
9.4.6
adobeacrobat
10.0
adobeacrobat
10.0.1
adobeacrobat
10.0.2
adobeacrobat
10.0.3
adobeacrobat
10.1
adobeacrobat
10.1.1
adobeacrobat_reader
10.0
adobeacrobat_reader
10.0.1
adobeacrobat_reader
10.0.2
adobeacrobat_reader
10.0.3
adobeacrobat_reader
10.1
adobeacrobat_reader
10.1.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
acroread
hardy
ignored
lucid
Fixed 9.4.7-1lucid1
released
maverick
Fixed 9.4.7-1maverick1
released
natty
Fixed 9.4.7-1natty1
released
oneiric
Fixed 9.4.7-1oneiric1
released
References
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00019.html
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00020.html
http://www.adobe.com/support/security/bulletins/apsb11-30.html
http://www.adobe.com/support/security/bulletins/apsb12-01.html
http://www.redhat.com/support/errata/RHSA-2012-0011.html
http://www.securityfocus.com/bid/51092
http://www.us-cert.gov/cas/techalerts/TA11-350A.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14865
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00019.html
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00020.html
http://www.adobe.com/support/security/bulletins/apsb11-30.html
http://www.adobe.com/support/security/bulletins/apsb12-01.html
http://www.redhat.com/support/errata/RHSA-2012-0011.html
http://www.securityfocus.com/bid/51092
http://www.us-cert.gov/cas/techalerts/TA11-350A.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14865