CVE-2011-0591

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D U3D file that triggers a buffer overflow during decompression, related to Texture and rgba, a different...

CVE-2011-0590

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a 3D file, a different vulnerability than CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600...

EUVD-2011-0614

The Bitmap parsing component in 2d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via an image with crafted 1 height and 2 width values for an RLE8 compressed bitmap, which trigger...

CVE-2011-0600

CVE-2011-0600 affects the U3D component in Adobe Reader and Acrobat. On Windows and macOS, vulnerable versions include Acrobat/Reader 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6. The flaw arises from processing a 3D file with an invalid Parent Node count which leads to an incorrect...

CVE-2011-0596

Adobe Reader/Acrobat is affected by CVE-2011-0596 due to a heap-based buffer overflow in the bitmap parsing component (RLE_8) of 2d.dll. Affected versions include Windows and macOS: Acrobat/Reader 10.x prior to 10.0.1, 9.x prior to 9.4.2, and 8.x prior to 8.2.6. Exploitation would require process...

CVE-2011-0593

CVE-2011-0593 affects Adobe Reader and Acrobat: in Windows and macOS, the following versions are vulnerable to remote code execution via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression. Affected: Acrobat/Reader 10.x before 10.0.1, 9.x before 9.4.2, and 8.x b...

CVE-2011-0590

CVE-2011-0590 impacts Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and macOS. Affects via a crafted 3D file enabling remote code execution. Remediation mentioned in the document: apply updates to 10.0.1, 9.4.2, or 8.2.6 respectively.

CVE-2011-0568

CVE-2011-0568 affects Adobe Reader/Acrobat on Mac OS X (and related Windows/UNIX lines per the combined advisories). The root issue spans multiple components: input-validation/memory-corruption and library-loading paths that could lead to denial of service or arbitrary code execution. Affected ve...

CVE-2011-0563

Adobe Reader and Acrobat are vulnerable in multiple old branches: 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and macOS. The issue allows arbitrary code execution or memory corruption via unspecified vectors and is distinct from CVE-2011-0589 and CVE-2011-0606. Patches e...

CVE-2011-0562

CVE-2011-0562 affects Adobe Reader/Acrobat on Windows (10.x before 10.0.1; 9.x before 9.4.2; 8.x before 8.2.6). Root cause: untrusted search path allowing a Trojan horse DLL in the current working directory to load, enabling local privilege escalation. Remediation: update to Adobe Reader/Acrobat ...

CVE-2011-0589

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2011-0563 and CVE-2011-0606...

CVE-2011-0570

CVE-2011-0570 affects Adobe Reader and Acrobat on Windows, via an untrusted search path that allows local users to gain privileges by placing a Trojan DLL in the current working directory. Affected: Acrobat/Reader 10.x prior to 10.0.1; 9.x prior to 9.4.2; 8.x prior to 8.2.6. Root cause: untrusted...

CVE-2011-0603

CVE-2011-0603 affects Adobe Reader/Acrobat on Windows and macOS, with affected lines: Adobe Reader/Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6. It allows a remote attacker to execute arbitrary code or cause a denial of service (memory corruption) via a crafted image. The Co...

CVE-2011-0604

CVE-2011-0604 is an XSS vulnerability in Adobe Reader/Acrobat affecting Windows and macOS: Acrobat/Reader 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6. It allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Mitigation per sources is upgrading to v...

CVE-2011-0606

CVE-2011-0606 : A stack-based buffer overflow in rt3d.dll affects Adobe Reader and Acrobat on Windows and macOS. The flaw, triggered by a crafted length value, can allow a remote attacker to execute arbitrary code or cause a denial of service. Impacted products include Adobe Reader/Acrobat 10.x b...

CVE-2011-0567

CVE-2011-0567 affects Adobe Reader and Acrobat (AcroRd32.dll) on Windows and macOS. The vulnerability occurs in the PDF/image handling in versions: Acrobat/Reader 10.x prior to 10.0.1, 9.x prior to 9.4.2, and 8.x prior to 8.2.6, where a crafted image triggers an incorrect pointer calculation, lea...

CVE-2011-0587

Adobe Reader/Acrobat X 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows or macOS contains a cross-site scripting (XSS) vulnerability. The issue allows a remote attacker to inject arbitrary web script or HTML via unspecified vectors in the viewer. The vulnerability is describe...

CVE-2011-0586

CVE-2011-0586 affects Adobe Reader and Acrobat prior to specific 10.x/9.x/8.x releases on Windows and macOS, where input validation is insufficient, allowing arbitrary code execution via unspecified/unknown vectors. Affected versions include: Windows/macOS users of Adobe Reader/Acrobat 10.x befor...

CVE-2011-0592

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D U3D file that triggers a buffer overflow during decompression, related to "Texture bmp," a different vulnerabilit...

Adobe Flash memory corruption vulnerability

Overview Adobe Flash contains an memory corruption vulnerability that can allow a remote, unauthenticated attacker to execute arbitrary code. Description Adobe Flash versions 10.1.102.64 and earlier contain a vulnerability that can result in memory corruption, which can allow arbitrary code...