CVE-2011-0595

2011-02-1018:00:00

CWE-20

[email protected]

web.nvd.nist.gov

cve

adobe

reader

acrobat

buffer overflow

remote code execution

nvd

7.6 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.334 Low

EPSS

Percentile

97.1%

JSON

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, and CVE-2011-0600.

CPENameOperatorVersion
adobe:acrobat_readeradobe acrobat readereq8.0
adobe:acrobat_readeradobe acrobat readereq8.1
adobe:acrobat_readeradobe acrobat readereq8.1.1
adobe:acrobat_readeradobe acrobat readereq8.1.2
adobe:acrobat_readeradobe acrobat readereq8.1.4
adobe:acrobat_readeradobe acrobat readereq8.1.5
adobe:acrobat_readeradobe acrobat readereq8.1.6
adobe:acrobat_readeradobe acrobat readereq8.1.7
adobe:acrobat_readeradobe acrobat readereq8.2
adobe:acrobat_readeradobe acrobat readereq8.2.1

CPE	Name	Operator	Version
adobe:acrobat_reader	adobe acrobat reader	eq	8.0
adobe:acrobat_reader	adobe acrobat reader	eq	8.1
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.1
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.2
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.4
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.5
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.6
adobe:acrobat_reader	adobe acrobat reader	eq	8.1.7
adobe:acrobat_reader	adobe acrobat reader	eq	8.2
adobe:acrobat_reader	adobe acrobat reader	eq	8.2.1