CVE-2010-2883

Stack-based buffer overflow in CoolType.dll in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a PDF document with a long field in a Smart INdependent...

Adobe Reader Smart INdependent Glyplets (SING) Table Handling Vulnerability

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'zlib' class Metasploit...

PT-2010-1173

Name of the Vulnerable Software and Affected Versions Adobe Reader versions 8.x through 8.2.5 Adobe Reader versions 9.x through 9.3 Description The issue is related to a stack-based buffer overflow in CoolType.dll, allowing remote attackers to execute arbitrary code or cause a denial of service v...

Adobe Reader < 9.4 / 8.2.5 Multiple Vulnerabilities (APSB10-21)

The version of Adobe Reader installed on the remote host is earlier than 9.4 / 8.2.5. Such versions are affected by multiple code execution vulnerabilities. Note that there have been reports that one or more of these issues are being actively exploited in the wild. C Tenable Network Security, Inc...

Adobe CoolType SING Table "uniqueName" Stack Buffer Overflow

This module exploits a vulnerability in the Smart INdependent Glyplets SING table handling within versions 8.2.4 and 9.3.4 of Adobe Reader. Prior versions are assumed to be vulnerable as well. This module requires Metasploit: https://metasploit.com/download Current source:...

GLSA-201009-05 : Adobe Reader: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201009-05 Adobe Reader: Multiple vulnerabilities Multiple vulnerabilities were discovered in Adobe Reader. For further information please consult the CVE entries and the Adobe Security Bulletins referenced below. Impact : A remote...

Adobe Reader: Multiple vulnerabilities

Background Adobe Reader formerly Adobe Acrobat Reader is a closed-source PDF reader. Description Multiple vulnerabilities were discovered in Adobe Reader. For further information please consult the CVE entries and the Adobe Security Bulletins referenced below. Impact A remote attacker might entic...

Demo of CVE-2010-2862 Adobe Reader Flaw Exploit

In this video, Niklas Wolff of the CSIS Security Group demonstrates an exploit for the recent integer overflow vulnerability in Adobe Reader CVE-2010-2862, disclosed at Black Hat in July, that allows remote code execution...

Mozilla Firefox 3.6.8 Adobe Reader Plugin 9.3.4.218 DLL Hijacking Exploit

@echo off GOTO START Mozilla Firefox 3.6.8 Adobe Reader Plugin 9.3.4.218 DLL Hijacking Exploit CoolType.dll Author: Rh0 Rh0atz1p.biz Date: August 26, 2010 Affected Software: Mozilla Firefox 3.6.8 with Adobe Reader Plugin 9.3.4.218 Tested on: Windows XP Pro SP3 x86 En Description: Affected...

Mozilla Firefox 3.6.8 Adobe Reader Plugin 9.3.4.218 (CoolType.dll)

Exploit for windows platform in category local exploits ================================================================== Mozilla Firefox 3.6.8 Adobe Reader Plugin 9.3.4.218 CoolType.dll ================================================================== @echo off GOTO START Mozilla Firefox 3.6.8...

Adobe PDF Escape EXE Social Engineering (No JavaScript)

$Id: adobepdfembeddedexenojs.rb 10126 2010-08-24 18:20:16Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

RHEL 5 : acroread (RHSA-2010:0636)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2010:0636 advisory. Adobe Reader allows users to view and print documents in Portable Document Format PDF. This update fixes a vulnerability in Adobe Reader. Th...

acroread: integer overflow flaw allows remote arbitrary code execution

Integer overflow in CoolType.dll in Adobe Reader 8.2.3 and 9.3.3, and Acrobat 9.3.3, allows remote attackers to execute arbitrary code via a TrueType font with a large maxCompositePoints value in a Maximum Profile maxp table...

Critical: Red Hat Security Advisory: acroread security update

Updated acroread packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 Extras and Red Hat Enterprise Linux 5 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS...

Adobe Reader cooltype.dll Remote Code Execution (APSB10-17; CVE-2010-2862)

Portable Document Format PDF is an open file format created by Adobe Systems. It is used for representing two-dimensional documents in a device and resolution independent fixed-layout document format. A vulnerability has been discovered in Adobe Reader and Acrobat. A remote attacker can exploit...

Adobe Reader < 9.3.4 / 8.2.4 Multiple Vulnerabilities (APSB10-17)

The version of Adobe Reader installed on the remote host is earlier than 9.3.4 / 8.2.4. Such versions are reportedly affected by multiple vulnerabilities : - Multiple vulnerabilities in the bundled Flash Player as noted in APSB10-16. CVE-2010-0209, CVE-2010-2188, CVE-2010-2213, CVE-2010-2214,...

Adobe Reader Font Parsing Integer Overflow Vulnerability (CVE-2010-2862) - Linux

Adobe Reader are prone to a font parsing integer overflow vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Adobe Reader Font Parsing Integer Overflow Vulnerability (Linux)

This host is installed with Adobe Reader and are prone to font parsing integer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbadobereaderintoverflowvulnlin.nasl 5263 2017-02-10 13:45:51Z teissa $ Adobe Reader Font Parsing Integer Overflow Vulnerability Linux Authors: Madhuri D Copyrigh...

Integer overflow

Integer overflow in CoolType.dll in Adobe Reader 8.2.3 and 9.3.3, and Acrobat 9.3.3, allows remote attackers to execute arbitrary code via a TrueType font with a large maxCompositePoints value in a Maximum Profile maxp table...

CVE-2010-2862

CVE-2010-2862 – Adobe Reader/Acrobat (CoolType.dll) Integer Overflow : A flaw in CoolType.dll allows remote code execution via a specially crafted TrueType font with a large maxCompositePoints in the maxp table. Affected products include Adobe Reader 8.2.3 and 9.3.3, and Acrobat 9.3.3. The root c...