6684 matches found
Adobe Releases Security Updates for Flash Player, Adobe Reader and Acrobat
Adobe has released security updates to address multiple vulnerabilities in Flash Player, Adobe Reader and Acrobat. Exploitation of these vulnerabilities could potentially allow an attacker to take control of the affected system. Users and administrators are encouraged to review Adobe Security...
CVE-2014-0546
Adobe Reader and Acrobat 10.x before 10.1.11 and 11.x before 11.0.08 on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via unspecified vectors. Recent assessments: gwillcox-r7 at November 22, 2020 3:25am UTC reported...
Adobe Reader < 10.1.11 / 11.0.08 Sandbox Bypass (APSB14-19)
The version of Adobe Reader installed on the remote host is a version prior to 10.1.11 / 11.0.08. It is, therefore, affected by a sandbox bypass flaw which can allow an attacker to run arbitrary code with escalated privileges on Windows hosts. Note that Nessus has not tested for this issue but ha...
VulnCheck KEV: CVE-2013-3346
Adobe Reader and Acrobat contain a memory corruption vulnerability which can allow attackers to execute arbitrary code or cause a denial of service...
VulnCheck KEV: CVE-2013-2729
Integer overflow vulnerability in Adobe Reader and Acrobat allows attackers to execute remote code...
Adobe Reader 9.3.2 (CoolType.dll) Remote Memory Corruption / DoS Vulnerability
No description provided by source. / Title: Adobe Reader 9.3.2 CoolType.dll Remote Memory Corruption / DoS Vulnerability Summary: Adobe Reader software is the global standard for electronic document sharing. It is the only PDF file viewer that can open and interact with all PDF documents. Use Ado...
Adobe Reader 10.1.4 JP2KLib&CoolType Crash PoC
No description provided by source. Title : Adobe Reader 10.1.4 JP2KLib&CoolType WriteAV Vulnerability Version : 10.1.4.38 Date : 2012-11-20 Vendor : http://www.adobe.com/ Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Author : coolkaveh...
Adobe U3D CLODProgressiveMeshDeclaration Array Overrun
No description provided by source. $Id: adobeu3dmeshcont.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms o...
Adobe Reader <= 9.1.3 and Acrobat COM Objects Memory Corruption Remote Code Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/36668/info Adobe Reader and Acrobat are prone to a remote code-execution vulnerability because they fail to properly handle certain COM objects. An attacker can exploit this issue by supplying a malicious PDF file or...
Adobe Reader <= 9.1.3 Plugin Open Parameters Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21858/info Adobe Reader Plugin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...
Adobe Collab.getIcon() Buffer Overflow
No description provided by source. $Id: adobegeticon.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Acrobat Reader 9.4 - Memory Corruption Vulnerability
No description provided by source. http://www.exploit-db.com/sploits/xplpdf.bin http://extraexploit.blogspot.com/2010/11/full-disclosure-xplpdf-adober-reader-94.html...
Adobe Flash Player "Button" Remote Code Execution
No description provided by source. $Id: adobeflashplayerbutton.rb 10857 2010-11-01 22:34:13Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
Adobe Reader ToolButton - Use After Free
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::BrowserExploitServer def...
Adobe Reader - util.printf() JavaScript Function Stack Overflow Exploit
No description provided by source. Adobe Reader 'util.printf' JavaScript Function Stack Buffer Overflow Exploit author: Elazar http://exploit-db.com/sploits/2008-APSB08-19.pdf milw0rm.com 2008-11-05...
Adobe Doc.media.newPlayer Use After Free Vulnerability
No description provided by source. $Id: adobemedianewplayer.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...
Adobe Reader for Android 11.1.3 - Arbitrary JavaScript Execution
No description provided by source. ------------------------------------------------------------------------ Adobe Reader for Android exposes insecure Javascript interfaces ------------------------------------------------------------------------ Yorick Koster, April 2014...
Adobe Reader U3D Memory Corruption Vulnerability
Adobe Reader U3D Memory Corruption Vulnerability 影响范围 软件版本:+0x9fb 000009fceax,0 ds:0023:c0c0cabc=jQuery214099071709053814121452575796030 不加hpa 的crash info eax=52520026 ebx=1e282ea8 ecx=00000024 edx=00000000 esi=00000000 edi=00000000 eip=1a73f2e3 esp=0012f4fc ebp=0012f548 iopl=0 nv up ei ng nz na ...
Adobe FlateDecode Stream Predictor 02 Integer Overflow
No description provided by source. $Id: adobeflatedecodepredictor02.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing...
Adobe Reader/Acrobat 10.0.1 DoS Exploit
No description provided by source. Title: Adobe Reader/Acrobat Memory Corruption Denial of Service Report to Vendor: 24 Feb 2011 Application Name: Adobe Reader/Acrobat Version: 10.0.1, other versions can be vulnerable before applying the 14 June 2011 Patch References: -...