9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.113 Low
EPSS
Percentile
95.2%
Array index error in AcroForm.api in Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allows remote attackers to execute arbitrary code via a crafted GIF image in a PDF file, which bypasses a size check and triggers a heap-based buffer overflow.
secunia.com/secunia_research/2010-88/
www.adobe.com/support/security/bulletins/apsb10-15.html
www.securityfocus.com/archive/1/512092/100/0/threaded
www.securityfocus.com/bid/41241
www.securitytracker.com/id?1024159
www.vupen.com/english/advisories/2010/1636
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7200