Lucene search
HistoryJun 30, 2010 - 6:30 p.m.
CVE-2010-2168
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.2
Confidence
Low
EPSS
0.104
Percentile
95.1%
Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow attackers to execute arbitrary code via a PDF file with crafted Flash content, involving the newfunction (0x44) operator and an “invalid pointer vulnerability” that triggers memory corruption, a different vulnerability than CVE-2010-1285 and CVE-2010-2201.
Affected configurations
Node
adobeacrobatMatch9.0
ORadobeacrobatMatch9.1
ORadobeacrobatMatch9.1.1
ORadobeacrobatMatch9.1.2
ORadobeacrobatMatch9.1.3
ORadobeacrobatMatch9.2
ORadobeacrobatMatch9.3
ORadobeacrobatMatch9.3.1
ORadobeacrobatMatch9.3.2
applemac_os_x
ORmicrosoftwindows
Node
adobeacrobat_readerMatch9.0
ORadobeacrobat_readerMatch9.1
ORadobeacrobat_readerMatch9.1.1
ORadobeacrobat_readerMatch9.1.2
ORadobeacrobat_readerMatch9.1.3
ORadobeacrobat_readerMatch9.2
ORadobeacrobat_readerMatch9.3
ORadobeacrobat_readerMatch9.3.1
ORadobeacrobat_readerMatch9.3.2
applemac_os_x
ORmicrosoftwindows
Node
adobeacrobatMatch8.0
ORadobeacrobatMatch8.1
ORadobeacrobatMatch8.1.1
ORadobeacrobatMatch8.1.2
ORadobeacrobatMatch8.1.3
ORadobeacrobatMatch8.1.4
ORadobeacrobatMatch8.1.5
ORadobeacrobatMatch8.1.6
ORadobeacrobatMatch8.1.7
ORadobeacrobatMatch8.2
ORadobeacrobatMatch8.2.1
ORadobeacrobatMatch8.2.2
applemac_os_x
ORmicrosoftwindows
Node
adobeacrobat_readerMatch8.0
ORadobeacrobat_readerMatch8.1
ORadobeacrobat_readerMatch8.1.1
ORadobeacrobat_readerMatch8.1.2
ORadobeacrobat_readerMatch8.1.4
ORadobeacrobat_readerMatch8.1.5
ORadobeacrobat_readerMatch8.1.6
ORadobeacrobat_readerMatch8.1.7
ORadobeacrobat_readerMatch8.2.1
ORadobeacrobat_readerMatch8.2.2
applemac_os_x
ORmicrosoftwindows
| Vendor | Product | Version | CPE |
|---|---|---|---|
| adobe | acrobat | 9.0 | cpe:2.3:a:adobe:acrobat:9.0:*:*:*:*:*:*:* |
| adobe | acrobat | 9.1 | cpe:2.3:a:adobe:acrobat:9.1:*:*:*:*:*:*:* |
| adobe | acrobat | 9.1.1 | cpe:2.3:a:adobe:acrobat:9.1.1:*:*:*:*:*:*:* |
| adobe | acrobat | 9.1.2 | cpe:2.3:a:adobe:acrobat:9.1.2:*:*:*:*:*:*:* |
| adobe | acrobat | 9.1.3 | cpe:2.3:a:adobe:acrobat:9.1.3:*:*:*:*:*:*:* |
| adobe | acrobat | 9.2 | cpe:2.3:a:adobe:acrobat:9.2:*:*:*:*:*:*:* |
| adobe | acrobat | 9.3 | cpe:2.3:a:adobe:acrobat:9.3:*:*:*:*:*:*:* |
| adobe | acrobat | 9.3.1 | cpe:2.3:a:adobe:acrobat:9.3.1:*:*:*:*:*:*:* |
| adobe | acrobat | 9.3.2 | cpe:2.3:a:adobe:acrobat:9.3.2:*:*:*:*:*:*:* |
| apple | mac_os_x | * | cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* |
Related
prion
prion
Memory corruption
2010-06-30 18:30:00
Memory corruption
2010-06-30 18:30:00
Memory corruption
2010-06-30 18:30:00
ubuntucve
ubuntucve
cvelist
cvelist
cve
cve
nvd
nvd
CVE-2010-1285
2010-06-30 18:30:01
CVE-2010-2201
2010-06-30 18:30:01
checkpoint_advisories
checkpoint_advisories
packetstorm
packetstorm
Month Of Abysssec Undisclosed Bugs - Adobe Acrobat Reader
2010-09-24 00:00:00
Month Of Abysssec Undisclosed Bugs - Adobe Acrobat / Reader
2010-09-13 00:00:00
seebug
seebug
Adobe Acrobat Reader and Flash - 'newfunction' Remote Code Execution Vulnerability
2014-07-01 00:00:00
Adobe Acrobat and Reader - "pushstring" Memory Corruption
2014-07-01 00:00:00
zdt
zdt
Adobe Acrobat Reader and Flash 'newfunction' Remote Code Execution
2010-09-24 00:00:00
Adobe Acrobat and Reader "pushstring" Memory Corruption
2010-09-12 00:00:00
exploitpack
exploitpack
Adobe Acrobat Reader and Flash - newfunction Remote Code Execution
2010-09-23 00:00:00
Adobe Acrobat and Reader - pushstring Memory Corruption
2010-09-12 00:00:00
securityvulns
securityvulns
exploitdb
exploitdb
Adobe Acrobat and Reader - 'pushstring' Memory Corruption
2010-09-12 00:00:00
openvas
openvas
Adobe Reader Multiple Vulnerabilities (Jul 2010) - Linux
2010-07-12 00:00:00
Adobe Acrobat and Reader Multiple Vulnerabilities (Jul 2010) - Windows
2010-07-12 00:00:00
SuSE Update for acroread SUSE-SA:2010:029
2010-07-12 00:00:00
nessus
nessus
Adobe Reader < 9.3.3 / 8.2.3 Multiple Vulnerabilities (APSB10-15)
2010-06-30 00:00:00
openSUSE Security Update : acroread (openSUSE-SU-2010:0359-1)
2010-07-09 00:00:00
SuSE 11 / 11.1 Security Update : acroread (SAT Patch Numbers 2637 / 2641)
2010-12-02 00:00:00
redhat
redhat
(RHSA-2010:0503) Critical: acroread security update
2010-06-30 00:00:00
suse
suse
remote code execution in acroread
2010-07-08 11:59:38
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2010-09-07 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.2
Confidence
Low
EPSS
0.104
Percentile
95.1%
Related for NVD:CVE-2010-2168