Lucene search

[email protected]NVD:CVE-2010-2889

HistoryOct 06, 2010 - 5:00 p.m.

CVE-2010-2889

2010-10-0617:00:16

CWE-20

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.018 Low

EPSS

Percentile

88.4%

JSON

Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows attackers to execute arbitrary code via a crafted font, a different vulnerability than CVE-2010-3626.

Affected configurations

NVD

Node

adobeacrobatMatch8.0

adobeacrobatMatch8.1

adobeacrobatMatch8.1.1

adobeacrobatMatch8.1.2

adobeacrobatMatch8.1.3

adobeacrobatMatch8.1.4

adobeacrobatMatch8.1.5

adobeacrobatMatch8.1.6

adobeacrobatMatch8.1.7

adobeacrobatMatch8.2

adobeacrobatMatch8.2.1

adobeacrobatMatch8.2.2

adobeacrobatMatch8.2.3

adobeacrobatMatch8.2.4

adobeacrobat_readerMatch8.0

adobeacrobat_readerMatch8.1

adobeacrobat_readerMatch8.1.1

adobeacrobat_readerMatch8.1.2

adobeacrobat_readerMatch8.1.4

adobeacrobat_readerMatch8.1.5

adobeacrobat_readerMatch8.1.6

adobeacrobat_readerMatch8.1.7

adobeacrobat_readerMatch8.2

adobeacrobat_readerMatch8.2.1

adobeacrobat_readerMatch8.2.2

adobeacrobat_readerMatch8.2.3

adobeacrobat_readerMatch8.2.4

Node

adobeacrobatMatch9.0

adobeacrobatMatch9.1

adobeacrobatMatch9.1.1

adobeacrobatMatch9.1.2

adobeacrobatMatch9.1.3

adobeacrobatMatch9.2

adobeacrobatMatch9.3

adobeacrobatMatch9.3.1

adobeacrobatMatch9.3.2

adobeacrobatMatch9.3.3

adobeacrobatMatch9.3.4

adobeacrobat_readerMatch9.0

adobeacrobat_readerMatch9.1

adobeacrobat_readerMatch9.1.1

adobeacrobat_readerMatch9.1.2

adobeacrobat_readerMatch9.1.3

adobeacrobat_readerMatch9.2

adobeacrobat_readerMatch9.3

adobeacrobat_readerMatch9.3.1

adobeacrobat_readerMatch9.3.2

adobeacrobat_readerMatch9.3.3

adobeacrobat_readerMatch9.3.4

References

lists.opensuse.org/opensuse-security-announce/2010-10/msg00001.html

lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html

secunia.com/advisories/43025

security.gentoo.org/glsa/glsa-201101-08.xml

www.adobe.com/support/security/bulletins/apsb10-21.html

www.redhat.com/support/errata/RHSA-2010-0743.html

www.us-cert.gov/cas/techalerts/TA10-279A.html

www.vupen.com/english/advisories/2011/0191

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7009

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.018 Low

EPSS

Percentile

88.4%

JSON

Related for NVD:CVE-2010-2889

cvelist2 ubuntucve2 prion2 cve2 nvd1 nessus11 openvas6 redhat1 gentoo1 suse1 securityvulns2