Lucene search
VulnazoidZDI-13-230HistorySep 11, 2013 - 12:00 a.m.
Adobe Reader U3D PCX Integer Overflow Remote Code Execution Vulnerability
2013-09-1100:00:00
vulnazoid
www.zerodayinitiative.com
10
0.02 Low
EPSS
Percentile
88.9%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the improper bounds checking of a U3D PCX external texture. The application performs insufficient bounds checking on user supplied data passed in which results in a heap buffer overflow. An attacker can leverage this situation to execute code under the context of the user running the process.
Related
checkpoint_advisories
checkpoint_advisories
Adobe Acrobat and Reader Integer Overflow (APSB13-22: CVE-2013-3358)
2013-12-02 00:00:00
prion
prion
Integer overflow
2013-09-12 13:28:00
Integer overflow
2013-09-12 13:28:00
cve
cve
CVE-2013-3358
2013-09-12 13:28:24
CVE-2013-3357
2013-09-12 13:28:24
cvelist
cvelist
CVE-2013-3357
2013-09-11 23:00:00
CVE-2013-3358
2013-09-11 23:00:00
nvd
nvd
CVE-2013-3357
2013-09-12 13:28:24
CVE-2013-3358
2013-09-12 13:28:24
nessus
nessus
Adobe Reader < 11.0.4 / 10.1.8 Multiple Vulnerabilities (APSB13-22)
2013-09-11 00:00:00
Adobe Acrobat < 11.0.4 / 10.1.8 Multiple Vulnerabilities (APSB13-22)
2013-09-11 00:00:00
threatpost
threatpost
Adobe Fixes Code Execution Bugs in Flash, Reader
2013-09-10 11:31:58
openvas
openvas
Adobe Acrobat Multiple Unspecified Vulnerabilities-01 (Sep 2013) - Windows
2013-09-17 00:00:00
Adobe Acrobat Multiple Unspecified Vulnerabilities-01 (Sep 2013) - Mac OS X
2013-09-17 00:00:00
Adobe Reader Multiple Unspecified Vulnerabilities-01 (Sep 2013) - Mac OS X
2013-09-17 00:00:00