EUVD-2011-0620

Malware in sbrugna...

CVE-2024-20726 [TianfuCup] JP2K Image Parsing Out-Of-Bounds Write

Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-20726 [TianfuCup] JP2K Image Parsing Out-Of-Bounds Write

Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Part II: Returning to Adobe Reader symbols on macOS

Posted by Mateusz Jurczyk, Project Zero In a blog post titled "The story of Adobe Reader symbols" published in October 2019, I presented an analysis of the debug symbols shipped with some older versions of Adobe Reader for Unix-family systems released between 1997-2013. Such symbols can prove...

Adobe Reader Crafted JP2K Heap Overflow (APSB13-02; CVE-2013-0621)

Adobe Reader is vulnerable to a heap overflow when parsing a specially crafted JP2K object...

CVE-2011-0602

CVE-2011-0602 affects Adobe Reader and Acrobat on Windows and macOS, with versions 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6. The vulnerability arises from crafted JP2K JPEG2000 records inside a PDF, causing heap corruption and enabling remote code execution. The provided documen...

CVE-2011-0602

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via crafted JP2K record types in a JPEG2000 image in a PDF file, which causes heap corruption, a different vulnerability than CVE-2011-0596,...