6682 matches found
acroread: multiple code execution flaws (APSB13-02)
Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allow attackers to execute arbitrary code via unspecified vectors, related to a "logic error," a different vulnerability than CVE-2013-0607, CVE-2013-0611, CVE-2013-0614, and CVE-2013-0618...
acroread: multiple code execution flaws (APSB13-02)
Heap-based buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-0604...
acroread: multiple code execution flaws (APSB13-02)
Use-after-free vulnerability in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allows attackers to execute arbitrary code via unspecified vectors...
Adobe Reader < 11.0.1 / 10.1.5 / 9.5.3 Multiple Vulnerabilities (APSB13-02)
The version of Adobe Reader installed on the remote host is earlier than 11.0.1 / 10.1.5 / 9.5.3 and is, therefore, affected by multiple vulnerabilities : - Multiple, unspecified memory corruption errors exist. CVE-2012-1530, CVE-2013-0601, CVE-2013-0605, CVE-2013-0616, CVE-2013-0619,...
Adobe Reader < 11.0.1 / 10.1.5 / 9.5.3 Multiple Vulnerabilities (APSB13-02) (Mac OS X)
The version of Adobe Reader installed on the remote Mac OS X host is prior to 11.0.1, 10.1.5, or 9.5.3. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption conditions exist that allow an attacker to execute arbitrary code or cause a denial of service...
Uncover Adobe Reader Sandbox Exceptions
Since version 10 Adobe Reader has included a flavor of the Chrome sandbox. This technology is much better explained here, and in the 4 Adobe specific posts: part1, part2, part3 and part4. But in very few words it works dividing responsibilities in at least 2 processes; the broker and a target. Th...
Adobe Reader 10.1.4 - JP2KLibCoolType Crash (PoC)
Adobe Reader 10.1.4 - JP2KLibCoolType Crash PoC Title : Adobe Reader 10.1.4 JP2KLib&CoolType WriteAV Vulnerability Version : 10.1.4.38 Date : 2012-11-20 Vendor : http://www.adobe.com/ Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Author : coolkav...
Adobe Reader 10.1.4 - JP2KLib&CoolType Crash (PoC)
Title : Adobe Reader 10.1.4 JP2KLib&CoolType WriteAV Vulnerability Version : 10.1.4.38 Date : 2012-11-20 Vendor : http://www.adobe.com/ Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Author : coolkaveh...
Adobe Reader 10.1.4 JP2KLib&CoolType WriteAV Vulnerability
The parsing routine is really complicated :D Write AV by some kind of not properly initialized array But the parameters of memmove, the counter And destiny pointer seems controllable with data from flatedecoded data. The wierd thing is the stream encoded with flatedecode can't decode properly via...
CentOS Update for nspluginwrapper CESA-2012:1459 centos6
Check for the Version of nspluginwrapper OpenVAS Vulnerability Test CentOS Update for nspluginwrapper CESA-2012:1459 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
RedHat Update for nspluginwrapper RHSA-2012:1459-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Scientific Linux Security Update : nspluginwrapper on SL6.x i386/x86_64 (20121113)
It was not possible for plug-ins wrapped by nspluginwrapper to discover whether the browser was running in Private Browsing mode. This flaw could lead to plug-ins wrapped by nspluginwrapper using normal mode while they were expected to run in Private Browsing mode. CVE-2011-2486 This update also...
CentOS 6 : nspluginwrapper (CESA-2012:1459)
Updated nspluginwrapper packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
nspluginwrapper security update
CentOS Errata and Security Advisory CESA-2012:1459 Updated nspluginwrapper packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring Syst...
Low: Red Hat Security Advisory: nspluginwrapper security and bug fix update
Updated nspluginwrapper packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
nspluginwrapper security and bug fix update
1.4.4-1 - Rebase the package to latest upstream - Added Adobe reader fix 645599...
Adobe Reader不明细节远程代码执行漏洞
BUGTRAQ ID: 56435 Adobe Reader也被称为Acrobat Reader是美国Adobe公司开发的一款优秀的PDF文档阅读软件。 Adobe Reader 10.0、11.0存在不明细节远程代码执行漏洞,攻击者可利用此漏洞在受影响应用中执行任意代码。 0 Adobe Reader 11.x Adobe Reader 10.x 厂商补丁: Adobe ----- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.adobe.com/support/security/...
First Windows 8 and Windows RT Security Updates Due Next Week
Plenty is happening on the Microsoft patch management front. First, Adobe agreed to sync up its patch release cycles with Microsoft’s on the second Tuesday of every month, moving away from quarterly releases. And now on Tuesday, Microsoft will release its first security updates since the release ...
Adobe Reader zero-day vulnerability with modified Blackhole Exploit-Kit
Group-IB, a Russian cybercrime investigation company has discovered a zero-day vulnerability, affects Adobe Reader X and Adobe Reader XI. The vulnerability is also included in new modified version of Blackhole Exploit-Kit, which is used for the distributing the banking Trojans Zeus, Spyeye,...
Adobe Reader 11.0.0 - Stack Overflow Crash (PoC)
Adobe Reader 11.0.0 - Stack Overflow Crash PoC Title : Adobe Reader 11.0.0 Stack overflow Version : 11.0.0.379 Date : 2012-11-01 Vendor : http://www.adobe.com/ Impact : Med Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : Windows 7 X64 ENG Author : coolkaveh Bug : ---- Don't...