Lucene search
SAINT CorporationSAINT:EC00E4B8FCE4E77FD95A52F596033503HistorySep 17, 2010 - 12:00 a.m.
Adobe Reader CoolType.dll buffer overflow
2010-09-1700:00:00
SAINT Corporation
download.saintcorporation.com
15
0.596 Medium
EPSS
Percentile
97.8%
Added: 09/17/2010
CVE: CVE-2010-2883
BID: 43057
OSVDB: 67849
Background
Adobe Reader is free software for viewing PDF documents.
Problem
A buffer overflow in the CoolType.dll module allows command execution when a user opens a PDF document containing a long, specially crafted field in a SING table within a TrueType font.
Resolution
Apply the fix referenced in APSA10-02 when available.
References
<http://secunia.com/advisories/41340>
Limitations
Exploit works on Adobe Reader 9.3.4 and requires a user to open the exploit file.
The IO::Uncompress and Compress::Zlib PERL modules must be installed on the SAINTexploit host in order to run this exploit.
Platforms
Windows
Related
openvas
openvas
Adobe Acrobat and Reader SING 'uniqueName' Buffer Overflow Vulnerability - Windows
2010-09-15 00:00:00
Adobe Acrobat and Reader Multiple Vulnerabilities -Oct10 (Windows)
2010-10-18 00:00:00
threatpost
threatpost
Ongoing Targeted Attack Campaign Going After Defense, Aerospace Industries
2012-01-31 17:05:17
Adobe Exploit Bypasses ASLR and DEP, Drops Signed Malicious File
2010-09-09 15:38:42
New Adobe PDF Zero-Day Flaw Under Attack
2010-09-08 17:50:52
saint
saint
Adobe Reader CoolType.dll buffer overflow
2010-09-17 00:00:00
Adobe Reader CoolType.dll buffer overflow
2010-09-17 00:00:00
Adobe Reader CoolType.dll buffer overflow
2010-09-17 00:00:00
packetstorm
packetstorm
Adobe Reader Smart INdependent Glyplets (SING) Table Handling Vulnerability
2010-09-09 00:00:00
cve
cve
CVE-2010-2883
2010-09-09 22:00:02
metasploit
metasploit
Adobe CoolType SING Table "uniqueName" Stack Buffer Overflow
2010-09-09 23:23:40
Adobe CoolType SING Table "uniqueName" Stack Buffer Overflow
2010-09-08 23:05:18
cisa_kev
cisa_kev
Adobe Acrobat and Reader Stack-Based Buffer Overflow Vulnerability
2022-06-08 00:00:00
canvas
canvas
Immunity Canvas: ACROBAT_TTF_SING
2010-09-09 22:00:00
seebug
seebug
Adobe CoolType SING Table "uniqueName" Stack Buffer Overflow
2014-07-01 00:00:00
thn
thn
Plugx RAT targeting government organizations in Japan using spear phishing
2012-09-11 16:49:00
Chinese Hackers spied on European Diplomats during recent G20 meetings
2013-12-13 02:59:00
attackerkb
attackerkb
CVE-2010-2883
2010-09-09 00:00:00
cert
cert
Adobe Reader and Acrobat Font Parsing Buffer Overflow Vulnerability
2010-09-14 00:00:00
prion
prion
Stack overflow
2010-09-09 22:00:00
checkpoint_advisories
checkpoint_advisories
cvelist
cvelist
CVE-2010-2883
2010-09-09 21:00:00
nvd
nvd
CVE-2010-2883
2010-09-09 22:00:02
exploitdb
exploitdb
nessus
nessus
RHEL 4 / 5 : acroread (RHSA-2010:0743)
2010-10-07 00:00:00
Adobe Acrobat < 9.4 / 8.2.5 Multiple Vulnerabilities (APSB10-21)
2010-09-09 00:00:00
GLSA-201101-08 : Adobe Reader: Multiple vulnerabilities
2011-01-24 00:00:00
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2011-01-21 00:00:00
redhat
redhat
(RHSA-2010:0743) Critical: acroread security update
2010-10-06 00:00:00
securityvulns
securityvulns
Adobe Acrobat / Reader multiple security vulnerabilities
2010-10-08 00:00:00
Security updates available for Adobe Reader and Acrobat
2010-10-06 00:00:00
suse
suse
remote code execution in acroread
2010-10-11 17:38:18