Gentoo Security Advisory GLSA 201101-08 (acroread)

The remote host is missing updates announced in advisory GLSA 201101-08. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

Gentoo Security Advisory GLSA 201009-05 (acroread)

The remote host is missing updates announced in advisory GLSA 201009-05. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Adobe Reader Image Texture Malformed RGBA File Memory Corruption (APSB11-03; CVE-2011-0591)

Adobe Acrobat and Reader products include a plugin to parse the U3D image files inside PDF documents. The Universal 3D format can link to external image files, for example in RGBA format, that provide texture data for the 3D objects. RGBA is a file extension for Silicon Graphics Image File Format...

Adobe Reader Image Texture Malformed BMP File Memory Corruption (APSB11-03; CVE-2011-0592; CVE-2011-0596)

A memory corruption vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to a 3D file parsing input validation error in Adobe Reader and Acrobat when parsing an external texture file in BMP format. A remote attacker could trigger this issue via a specially crafted...

Adobe Reader Encoded CCITT Decompression Heap Overflow (APSB11-03; CVE-2011-0567)

Adobe Reader and Acrobat is a family of computer programs developed by Adobe Systems, designed to view, create, manipulate and manage files in Adobe's core technology, the Portable Document Format PDF, a format that has become the de facto standard in the electronic document exchange. A memory...

Adobe Reader PDF Font Data Length Heap Corruption (APSB11-03; CVE-2011-0594)

Portable Document Format PDF is an open file format created by Adobe Systems. It is used for representing two-dimensional documents in a device and resolution independent fixed-layout document format. A heap corruption vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability...

Adobe Reader JPEG 2000 Embedded in PDF File Memory Corruption (APSB11-03; CVE-2011-0602)

Adobe Reader and Acrobat is a family of computer programs developed by Adobe Systems, designed to view, create, manipulate and manage files in Adobe's core technology, the Portable Document Format PDF. PDF files can contain JPEG 2000 images that are displayed when the files are opened in Adobe...

RHEL 4 / 5 / 6 : acroread (RHSA-2011:0301)

Updated acroread packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 Extras and Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System...

acroread: critical APSB11-03

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a font...

acroread: multiple XSS flaws (APSB11-03)

Cross-site scripting XSS vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-0587...

acroread: critical APSB11-03

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D U3D file that triggers a buffer overflow during decompression, a different vulnerability than CVE-2011-0590,...

acroread: critical APSB11-03

Untrusted search path vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerability than CVE-2011-0570 and CVE-2011-0588...

acroread: critical APSB11-03

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X do not properly validate unspecified input data, which allows attackers to execute arbitrary code via unknown vectors...

acroread: critical APSB11-03

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a 3D file, a different vulnerability than CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600...

acroread: critical APSB11-03

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D U3D file that triggers a buffer overflow during decompression, related to Texture and rgba, a different...

acroread: critical APSB11-03

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D U3D file that triggers a buffer overflow during decompression, a different vulnerability than CVE-2011-0590,...

acroread: critical APSB11-03

The U3D component in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a 3D file with an invalid Parent Node count that triggers an incorrect size calculation and memory corruption, a...

acroread: critical APSB11-03

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via crafted JP2K record types in a JPEG2000 image in a PDF file, which causes heap corruption, a different vulnerability than CVE-2011-0596,...

acroread: critical APSB11-03

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted image, a different vulnerability than CVE-2011-0566 and CVE-2011-0567...

acroread: critical APSB11-03

Stack-based buffer overflow in rt3d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors related to a crafted lengt...