CVE-2011-0592

2011-02-1018:00:00

CWE-20

[email protected]

web.nvd.nist.gov

110

cve-2011-0592

security

adobe

reader

acrobat

buffer overflow

remote code execution

vulnerability

nvd

7.6 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.272 Low

EPSS

Percentile

96.8%

JSON

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, related to “Texture bmp,” a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600.

CPENameOperatorVersion
adobe:acrobat_readeradobe acrobat readereq8.0
adobe:acrobat_readeradobe acrobat readereq8.1
adobe:acrobat_readeradobe acrobat readereq8.1.1
adobe:acrobat_readeradobe acrobat readereq8.1.2
adobe:acrobat_readeradobe acrobat readereq8.1.4
adobe:acrobat_readeradobe acrobat readereq8.1.5
adobe:acrobat_readeradobe acrobat readereq8.1.6
adobe:acrobat_readeradobe acrobat readereq8.1.7
adobe:acrobat_readeradobe acrobat readereq8.2
adobe:acrobat_readeradobe acrobat readereq8.2.1

CPE	Name	Operator	Version
adobe:acrobat_reader	adobe acrobat reader	eq	8.0
adobe:acrobat_reader	adobe acrobat reader	eq	8.1
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.1
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.2
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.4
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.5
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.6
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.7
adobe:acrobat_reader	adobe acrobat reader	eq	8.2
adobe:acrobat_reader	adobe acrobat reader	eq	8.2.1