Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-0596
HistoryFeb 10, 2011 - 6:00 p.m.

CVE-2011-0596

2011-02-1018:00:58
CWE-20
[email protected]
web.nvd.nist.gov
4

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.821

Percentile

98.4%

JSON

The Bitmap parsing component in 2d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via an image with crafted (1) height and (2) width values for an RLE_8 compressed bitmap, which triggers a heap-based buffer overflow, a different vulnerability than CVE-2011-0598, CVE-2011-0599, and CVE-2011-0602.

Affected configurations

Nvd
Node
adobeacrobat_readerMatch8.0
OR
adobeacrobat_readerMatch8.1
OR
adobeacrobat_readerMatch8.1.1
OR
adobeacrobat_readerMatch8.1.2
OR
adobeacrobat_readerMatch8.1.4
OR
adobeacrobat_readerMatch8.1.5
OR
adobeacrobat_readerMatch8.1.6
OR
adobeacrobat_readerMatch8.1.7
OR
adobeacrobat_readerMatch8.2
OR
adobeacrobat_readerMatch8.2.1
OR
adobeacrobat_readerMatch8.2.2
OR
adobeacrobat_readerMatch8.2.3
OR
adobeacrobat_readerMatch8.2.4
OR
adobeacrobat_readerMatch9.0
OR
adobeacrobat_readerMatch9.1
OR
adobeacrobat_readerMatch9.1.1
OR
adobeacrobat_readerMatch9.1.2
OR
adobeacrobat_readerMatch9.1.3
OR
adobeacrobat_readerMatch9.2
OR
adobeacrobat_readerMatch9.3
OR
adobeacrobat_readerMatch9.3.1
OR
adobeacrobat_readerMatch9.3.2
OR
adobeacrobat_readerMatch9.3.3
OR
adobeacrobat_readerMatch9.3.4
OR
adobeacrobat_readerMatch9.4
OR
adobeacrobat_readerMatch9.4.1
OR
adobeacrobat_readerMatch10.0
AND
applemac_os_x
OR
microsoftwindows
Node
adobeacrobatMatch8.0
OR
adobeacrobatMatch8.1
OR
adobeacrobatMatch8.1.1
OR
adobeacrobatMatch8.1.2
OR
adobeacrobatMatch8.1.3
OR
adobeacrobatMatch8.1.4
OR
adobeacrobatMatch8.1.5
OR
adobeacrobatMatch8.1.6
OR
adobeacrobatMatch8.1.7
OR
adobeacrobatMatch8.2
OR
adobeacrobatMatch8.2.1
OR
adobeacrobatMatch8.2.2
OR
adobeacrobatMatch8.2.3
OR
adobeacrobatMatch8.2.4
OR
adobeacrobatMatch9.0
OR
adobeacrobatMatch9.1
OR
adobeacrobatMatch9.1.1
OR
adobeacrobatMatch9.1.2
OR
adobeacrobatMatch9.1.3
OR
adobeacrobatMatch9.2
OR
adobeacrobatMatch9.3
OR
adobeacrobatMatch9.3.1
OR
adobeacrobatMatch9.3.2
OR
adobeacrobatMatch9.3.3
OR
adobeacrobatMatch9.3.4
OR
adobeacrobatMatch9.4
OR
adobeacrobatMatch9.4.1
OR
adobeacrobatMatch10.0
AND
applemac_os_x
OR
microsoftwindows
VendorProductVersionCPE
adobeacrobat_reader8.0cpe:2.3:a:adobe:acrobat_reader:8.0:*:*:*:*:*:*:*
adobeacrobat_reader8.1cpe:2.3:a:adobe:acrobat_reader:8.1:*:*:*:*:*:*:*
adobeacrobat_reader8.1.1cpe:2.3:a:adobe:acrobat_reader:8.1.1:*:*:*:*:*:*:*
adobeacrobat_reader8.1.2cpe:2.3:a:adobe:acrobat_reader:8.1.2:*:*:*:*:*:*:*
adobeacrobat_reader8.1.4cpe:2.3:a:adobe:acrobat_reader:8.1.4:*:*:*:*:*:*:*
adobeacrobat_reader8.1.5cpe:2.3:a:adobe:acrobat_reader:8.1.5:*:*:*:*:*:*:*
adobeacrobat_reader8.1.6cpe:2.3:a:adobe:acrobat_reader:8.1.6:*:*:*:*:*:*:*
adobeacrobat_reader8.1.7cpe:2.3:a:adobe:acrobat_reader:8.1.7:*:*:*:*:*:*:*
adobeacrobat_reader8.2cpe:2.3:a:adobe:acrobat_reader:8.2:*:*:*:*:*:*:*
adobeacrobat_reader8.2.1cpe:2.3:a:adobe:acrobat_reader:8.2.1:*:*:*:*:*:*:*
Rows per page:
1-10 of 571

Related

prion 4
cve 4
nvd 3
cvelist 4
securityvulns 6
checkpoint_advisories 5
zdi 3
nessus 10
redhat 1
openvas 6
suse 1
gentoo 1
prion
prion
Integer overflow
2011-02-10 18:00:00
Heap overflow
2011-02-10 18:00:00
Design/Logic Flaw
2011-02-10 18:00:00
cve
cve
CVE-2011-0596
2011-02-10 18:00:58
CVE-2011-0602
2011-02-10 18:00:58
CVE-2011-0599
2011-02-10 18:00:58
nvd
nvd
CVE-2011-0599
2011-02-10 18:00:58
CVE-2011-0598
2011-02-10 18:00:58
CVE-2011-0602
2011-02-10 18:00:58
cvelist
cvelist
CVE-2011-0598
2011-02-10 17:00:00
CVE-2011-0596
2011-02-10 17:00:00
CVE-2011-0602
2011-02-10 17:00:00
securityvulns
securityvulns
iDefense Security Advisory 02.08.11: Adobe Reader and Acrobat JP2K Invalid Indexing Vulnerability
2011-02-11 00:00:00
ZDI-11-071: Adobe Reader BMP RLE_8 Decompression Remote Code Execution Vulnerability
2011-02-11 00:00:00
ZDI-11-073: Adobe Reader ICC Parsing Remote Code Execution Vulnerability
2011-02-11 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Reader JPEG 2000 Embedded in PDF File Memory Corruption (APSB11-03; CVE-2011-0602)
2011-03-08 00:00:00
Adobe Acrobat Reader U3D Texture BMP File Buffer Overflow (APSB11-03; CVE-2011-0599)
2011-02-22 00:00:00
Adobe Reader ICC Embedded In PDF CLUT Array Buffer Overflow (APSB11-03; CVE-2011-0598)
2011-02-22 00:00:00
zdi
zdi
Adobe Reader BMP RLE_8 Decompression Remote Code Execution Vulnerability
2011-02-08 00:00:00
Adobe Reader ICC Parsing Remote Code Execution Vulnerability
2011-02-08 00:00:00
Adobe Reader BMP ColorData Remote Code Execution Vulnerability
2011-02-08 00:00:00
nessus
nessus
RHEL 4 / 5 / 6 : acroread (RHSA-2011:0301)
2011-02-24 00:00:00
SuSE 11.1 Security Update : acroread (SAT Patch Number 4057)
2011-03-07 00:00:00
openSUSE Security Update : acroread (openSUSE-SU-2011:0156-1)
2014-06-13 00:00:00
redhat
redhat
(RHSA-2011:0301) Critical: acroread security update
2011-02-23 00:00:00
openvas
openvas
Adobe Reader and Acrobat Multiple Vulnerabilities (Feb 2011) - Windows
2011-02-15 00:00:00
Adobe Reader Multiple Vulnerabilities (Feb 2011) - Linux
2011-02-15 00:00:00
SuSE Update for acroread SUSE-SA:2011:011
2011-03-15 00:00:00
suse
suse
remote code execution in acroread
2011-03-07 16:51:18
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2012-01-30 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.821

Percentile

98.4%

JSON
Related for NVD:CVE-2011-0596
prion4cve4nvd3cvelist4securityvulns6checkpoint_advisories5zdi3nessus10redhat1openvas6suse1gentoo1