CVE-2010-2201

2010-06-3000:00:00

ubuntu.com

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.024 Low

EPSS

Percentile

89.9%

JSON

Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows
and Mac OS X, allow attackers to execute arbitrary code via a PDF file with
crafted Flash content involving the (1) pushstring (0x2C) operator, (2)
debugfile (0xF1) operator, and an “invalid pointer vulnerability” that
triggers memory corruption, a different vulnerability than CVE-2010-1285
and CVE-2010-2168.

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchacroread< 9.3.3-1hardy1UNKNOWN
ubuntu9.04noarchacroread< 9.3.3-1jaunty1UNKNOWN
ubuntu9.10noarchacroread< 9.3.3-1karmic1UNKNOWN
ubuntu10.04noarchacroread< 9.3.3-1lucid1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	8.04	noarch	acroread	< 9.3.3-1hardy1	UNKNOWN
ubuntu	9.04	noarch	acroread	< 9.3.3-1jaunty1	UNKNOWN
ubuntu	9.10	noarch	acroread	< 9.3.3-1karmic1	UNKNOWN
ubuntu	10.04	noarch	acroread	< 9.3.3-1lucid1	UNKNOWN