acroread: script injection vulnerability (APSB10-02)

The default configuration of Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, does not enable the Enhanced Security feature, which has unspecified impact and attack vectors, related to a "script injection vulnerability," as demonstrated by Acrobat Forms Data...

acroread: multiple code execution flaws (APSB10-02)

The U3D implementation in Adobe Reader and Acrobat 9.x before 9.3, 8.x before 8.2 on Windows and Mac OS X, and 7.x before 7.1.4 allows remote attackers to execute arbitrary code via malformed U3D data in a PDF document, related to a CLODProgressiveMeshDeclaration "array boundary issue," a differe...

acroread: multiple code execution flaws (APSB10-02)

Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code via a crafted JPCMSRGN marker in the Jp2c stream of a JpxDecode encoded data stream, which triggers an integer sign extension that bypasses a sanity check, leadin...

acroread: multiple code execution flaws (APSB10-02)

Integer overflow in the U3D implementation in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code via a malformed PDF document...

acroread: multiple code execution flaws (APSB10-02)

The 3D implementation in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, might allow attackers to execute arbitrary code via unspecified vectors, related to a "DLL-loading vulnerability."...

acroread: script injection vulnerability (APSB10-02)

The default configuration of Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, does not enable the Enhanced Security feature, which has unspecified impact and attack vectors, related to a "script injection vulnerability," as demonstrated by Acrobat Forms Data...

Critical: Red Hat Security Advisory: acroread security and bug fix update

Updated acroread packages that fix multiple security issues and three bugs are now available for Red Hat Enterprise Linux 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. Adobe Reader allows users to view and print documents in...

PT-2010-1309 · Adobe · Reader +1

Name of the Vulnerable Software and Affected Versions: Adobe Reader and Acrobat versions 9.x before 9.3 Adobe Reader and Acrobat versions 8.x before 8.2 Adobe Reader and Acrobat versions 7.x before 7.1.4 Description: The issue is related to a problem in the U3D implementation, allowing remote...

CVE-2009-3953

The U3D implementation in Adobe Reader and Acrobat 9.x before 9.3, 8.x before 8.2 on Windows and Mac OS X, and 7.x before 7.1.4 allows remote attackers to execute arbitrary code via malformed U3D data in a PDF document, related to a CLODProgressiveMeshDeclaration “array boundary issue,” a differe...

Preemptive Protection against Adobe Reader Null-Pointer Dereference Denial of Service Vulnerability (APSB10-02)

A denial of service vulnerability has been discovered in Adobe Reader and Acrobat. A remote attacker can exploit this vulnerability to execute arbitrary code on an affected system via a specially crafted PDF file. Portable Document Format PDF is an open file format created by Adobe Systems. It is...

Adobe Reader < 9.3 / 8.2 Multiple Vulnerabilities (APSB10-02)

The version of Adobe Reader installed on the remote host is earlier than 9.3 / 8.2. Such versions are reportedly affected by multiple vulnerabilities : - A use-after-free vulnerability in 'Multimedia.api' can lead to code execution. CVE-2009-4324 - An array boundary issue in 'U3D' support can lea...

Adobe Reader Plugin Malformed URL Cross-Site Scripting (APSB07-01; CVE-2007-0045; CVE-2007-0048)

Multiple cross-site scripting XSS vulnerabilities have been discovered in Adobe Reader and Acrobat Plugin when used with various Web browsers. The vulnerabilities are due to an error in the Adobe Acrobat Reader Plugin...

Adobe Reader JPEG2000 Region of Interest Memory Corruption (APSB10-02; CVE-2009-3955)

Portable Document Format PDF is an open file format created by Adobe Systems. A memory corruption vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to the way Adobe Reader and Acrobat parse a PDF file containing a malformed Jp2c stream of a JpxDecode encoded da...

Adobe U3D CLODProgressiveMeshDeclaration Array Overrun

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'zlib' class Metasploit3...

Adobe U3D CLODProgressiveMeshDeclaration Array Overrun

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'zlib' class Metasploit3...

Adobe FlateDecode Stream Predictor 02 Integer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'zlib' class Metasploit3...

Adobe Acrobat, Adobe Reader

Vulnerabilities that allow attackers to cause a denial of service memory corruption or possibly execute arbitrary code via unspecified vectors. Buffer overflow in Adobe Reader 9.0 and earlier, and Acrobat 9.0 and earlier, allows remote attackers to execute arbitrary code via a crafted PDF documen...

Adobe Reader media.newPlayer Use-After-Free Code Execution

Added: 12/23/2009 CVE: CVE-2009-4324 BID: 37331 OSVDB: 60980 Background Adobe Reader is free software for viewing PDF documents. Problem This issue is caused by a use-after-free error within the "Doc.Media.newPlayer" JavaScript function, which could be exploited by attackers to execute arbitrary...

Adobe Reader and Acrobat (CVE-2009-4324) Exploit

Exploit for unknown platform in category local exploits ================================================ Adobe Reader and Acrobat CVE-2009-4324 Exploit ================================================ Title: Adobe Reader and Acrobat CVE-2009-4324 Exploit CVE-ID: CVE-2009-4324 OSVDB-ID: Author:...

Adobe Reader media.newPlayer Use-After-Free Code Execution

Added: 12/23/2009 CVE: CVE-2009-4324 BID: 37331 OSVDB: 60980 Background Adobe Reader is free software for viewing PDF documents. Problem This issue is caused by a use-after-free error within the "Doc.Media.newPlayer" JavaScript function, which could be exploited by attackers to execute arbitrary...