CVE-2014-0565

Technical details for CVE-2014-0565 are not publicly provided in the connected documents. Monitor for updates.

CVE-2014-0568

CVE-2014-0568 impacts Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows. The root cause is a NtSetInformationFile hook that enables an NTFS junction attack to bypass sandboxing and execute native code with elevated privileges. Mitigation/patch: upgrade to affected pr...

CVE-2014-0561

Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0567...

CVE-2014-0561

CVE-2014-0561 describes a heap-based buffer overflow in Adobe Reader and Acrobat 10.x (pre-10.1.12) and 11.x (pre-11.0.09) on Windows and OS X, allowing arbitrary code execution. The description specifies the vulnerability as a heap overflow with the vectors unspecified, and notes it is a differe...

CVE-2014-0566

CVE-2014-0566 affects Adobe Reader/Acrobat on Windows and OS X, with versions 10.x before 10.1.12 and 11.x before 11.0.09 susceptible to arbitrary code execution or memory corruption via unspecified vectors (a separate issue from CVE-2014-0565). Connected sources indicate this vulnerability spans...

Adobe Reader 3DIF Plugin Heap Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the 3DIF Plugin...

Adobe Reader replace() Heap Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the replace...

Adobe Reader < 10.1.12 / 11.0.09 Multiple Vulnerabilities (APSB14-20)

The version of Adobe Reader installed on the remote host is a version prior to 10.1.12 / 11.0.09. It is, therefore, affected by the following vulnerabilities : - A use-after-free error exists that allows arbitrary code execution. CVE-2014-0560 - A heap-based buffer overflow exists that allows...

Adobe Reader <= 10.1.10 / 11.0.07 Multiple Vulnerabilities (APSB14-20) (Mac OS X)

The version of Adobe Reader installed on the remote host is version 10.x equal to or prior to 10.1.10, or 11.x equal to or prior to 11.0.07. It is, therefore, affected by multiple vulnerabilities : - A use-after-free error exists that allows arbitrary code execution. CVE-2014-0560 - A heap-based...

Adobe Flash Player security update September 2014

Adobe today released an updated Flash Player that patched a dozen vulnerabilities, and also announced that a scheduled security update for Reader and Acrobat has been postponed to the week of Sept. 15. Today’s release, which coincides with Microsoft’s monthly scheduled security updates, patches...

Threat Outbreak Alert RuleID11430: Email Messages Distributing Malicious Software on September 5, 2014

Medium Alert ID: 35620 First Published: 2014 September 5 15:26 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID11430 may contain the following files: Name |...

Microsoft to Patch Critical Internet Explorer Vulnerability Next Week

You all won't have forget about the dodgy update released by Microsoft in its last month’s Patch Tuesday Updates which was responsible for crippling users’ computers - specially users running Windows 7 PCs with the 64bit version - with the infamous “Blue Screens of Death.” The company fixed the...

Watering Hole Attack Target Automotive, Aerospace Industries

Attackers managed to load malware onto the website of a prominent company involved in the development of simulation and systems engineering software widely used within the automotive, aerospace and manufacturing industries. These types of attacks are referred to as watering holes because, like a...

Adobe Reader Sandbox Bypass Vulnerability (Aug 2014) - Windows

Adobe Reader is prone to a sandbox bypass vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:acrobatreader";...

CVE-2014-0546

Adobe Reader and Acrobat 10.x before 10.1.11 and 11.x before 11.0.08 on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via unspecified vectors...

Adobe Releases Critical Security Updates for Flash Player, Acrobat and Adobe Reader

Adobe has released security updates to fix seven vulnerabilities in its Flash and Air platforms and one in its Reader and Acrobat which, according to the company, is being exploited by attackers in wild "...in limited, isolated attacks targeting Adobe Reader users on Windows." The vulnerabilities...

CVE-2014-0546

Adobe Reader and Acrobat 10.x before 10.1.11 and 11.x before 11.0.08 on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via unspecified vectors...

CVE-2014-0546

Adobe Reader and Acrobat 10.x before 10.1.11 and 11.x before 11.0.08 on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via unspecified vectors...

Adobe Acrobat and Reader CVE-2014-0546 Unspecified Security Bypass Vulnerability

Description Adobe Acrobat and Reader are prone to an unspecified security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. The following products are affected: Adobe Acrobat XI for Windows 11.0.07 and 10.1.10 Adobe...

VulnCheck KEV: CVE-2014-0546

Adobe Reader and Acrobat on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context...