CVE-2010-2889
published 2010-10-06CVE-2010-2889: Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows attackers to execute arbitrary code…
PriorityP356critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
27.24%
97.8th percentile
Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows attackers to execute arbitrary code via a crafted font, a different vulnerability than CVE-2010-3626.
Affected
49 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
acroread: multiple code execution flaws (APSB10-21)
vendor_redhat·2010-10-05·CVSS 9.3
CVE-2010-3626 [CRITICAL] acroread: multiple code execution flaws (APSB10-21)
acroread: multiple code execution flaws (APSB10-21)
Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows attackers to execute arbitrary code via a crafted font, a different vulnerability than CVE-2010-2889.
Package: acroread (Red Hat Enterprise Linux 6) - Not affected
Red Hat
acroread: multiple code execution flaws (APSB10-21)
vendor_redhat·2010-10-05·CVSS 9.3
CVE-2010-2889 [CRITICAL] acroread: multiple code execution flaws (APSB10-21)
acroread: multiple code execution flaws (APSB10-21)
Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows attackers to execute arbitrary code via a crafted font, a different vulnerability than CVE-2010-3626.
Package: acroread (Red Hat Enterprise Linux 6) - Not affected
GHSA
GHSA-fv22-479x-wqf8: Unspecified vulnerability in Adobe Reader and Acrobat 9
ghsa_unreviewed·2022-05-14·CVSS 9.3
CVE-2010-3626 [CRITICAL] CWE-20 GHSA-fv22-479x-wqf8: Unspecified vulnerability in Adobe Reader and Acrobat 9
Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows attackers to execute arbitrary code via a crafted font, a different vulnerability than CVE-2010-2889.
GHSA
GHSA-6qx2-9w3m-q5pm: Unspecified vulnerability in Adobe Reader and Acrobat 9
ghsa_unreviewed·2022-05-14·CVSS 9.3
CVE-2010-2889 [CRITICAL] CWE-20 GHSA-6qx2-9w3m-q5pm: Unspecified vulnerability in Adobe Reader and Acrobat 9
Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows attackers to execute arbitrary code via a crafted font, a different vulnerability than CVE-2010-3626.
Suricata
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen ASCII
suricata·2010-07-30·CVSS 7.5
CVE-2007-2889 [HIGH] ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen ASCII
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen ASCII
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen ASCII"; flow:established,to_server; http.uri; content:"/tracking/courseLog.php?"; nocase; content:"scormcontopen="; nocase; content:"ASCII("; nocase; content:"SELECT"; nocase; distance:0; reference:cve,CVE-2007-2889; reference:url,www.milw0rm.com/exploits/3980; classtype:web-application-attack; sid:2004051; rev:10; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre_tactic_name
Suricata
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen UPDATE
suricata·2010-07-30·CVSS 7.5
CVE-2007-2889 [HIGH] ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen UPDATE
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen UPDATE
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen UPDATE"; flow:established,to_server; http.uri; content:"/tracking/courseLog.php?"; nocase; content:"scormcontopen="; nocase; content:"UPDATE"; nocase; content:"SET"; nocase; distance:0; reference:cve,CVE-2007-2889; reference:url,www.milw0rm.com/exploits/3980; classtype:web-application-attack; sid:2004052; rev:10; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre_tactic_name I
Suricata
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen UNION SELECT
suricata·2010-07-30·CVSS 7.5
CVE-2007-2889 [HIGH] ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen UNION SELECT
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen UNION SELECT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen UNION SELECT"; flow:established,to_server; http.uri; content:"/tracking/courseLog.php?"; nocase; content:"scormcontopen="; nocase; content:"UNION"; nocase; content:"SELECT"; nocase; distance:0; reference:cve,CVE-2007-2889; reference:url,www.milw0rm.com/exploits/3980; classtype:web-application-attack; sid:2004048; rev:10; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre
Suricata
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen INSERT
suricata·2010-07-30·CVSS 7.5
CVE-2007-2889 [HIGH] ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen INSERT
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen INSERT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen INSERT"; flow:established,to_server; http.uri; content:"/tracking/courseLog.php?"; nocase; content:"scormcontopen="; nocase; content:"INSERT"; nocase; content:"INTO"; nocase; distance:0; reference:cve,CVE-2007-2889; reference:url,www.milw0rm.com/exploits/3980; classtype:web-application-attack; sid:2004049; rev:10; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre_tactic_name
Suricata
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen DELETE
suricata·2010-07-30·CVSS 7.5
CVE-2007-2889 [HIGH] ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen DELETE
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen DELETE
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen DELETE"; flow:established,to_server; http.uri; content:"/tracking/courseLog.php?"; nocase; content:"scormcontopen="; nocase; content:"DELETE"; nocase; content:"FROM"; nocase; distance:0; reference:cve,CVE-2007-2889; reference:url,www.milw0rm.com/exploits/3980; classtype:web-application-attack; sid:2004050; rev:10; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre_tactic_name
Suricata
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen SELECT
suricata·2010-07-30·CVSS 7.5
CVE-2007-2889 [HIGH] ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen SELECT
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen SELECT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen SELECT"; flow:established,to_server; http.uri; content:"/tracking/courseLog.php?"; nocase; content:"scormcontopen="; nocase; content:"SELECT"; nocase; content:"FROM"; nocase; distance:0; reference:cve,CVE-2007-2889; reference:url,www.milw0rm.com/exploits/3980; classtype:web-application-attack; sid:2004047; rev:10; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_11, mitre_tactic_id TA0001, mitre_tactic_name
No public exploits indexed.
Bugzilla
acroread: multiple code execution flaws (APSB10-21)
bugzilla·2010-10-04·CVSS 7.3
CVE-2010-2883 [HIGH] acroread: multiple code execution flaws (APSB10-21)
acroread: multiple code execution flaws (APSB10-21)
Adobe security bulletin APSB10-21 describes multiple security flaws that can lead to arbitrary code execution when malicious PDF file is opened in Adobe Reader.
http://www.adobe.com/support/security/bulletins/apsb10-21.html
Two of the issues were previously public, as they were exploited in the wild:
This update resolves a font-parsing input validation vulnerability that could lead to code execution (CVE-2010-2883). (see bug #632267)
This update resolves a memory corruption vulnerability in the authplay.dll component that could lead to code execution (CVE-2010-2884). (see bug #633917, affects embedded Flash player)
Additional issues with possible code execution impact:
This update resolves a font-parsing input validation vulnerabil
Checkpoint
50 CVEs in 50 Days: Fuzzing Adobe Reader
blogs_checkpoint·2018-12-12
CVE-2010-2889 50 CVEs in 50 Days: Fuzzing Adobe Reader
Latest Publications
CPR Podcast Channel
AI Research
Web 3.0 Security
Intelligence Reports
ThreatCloud AI
Threat Intelligence & Research
Zero Day Protection
Sandblast File Analysis
About Us
SUBSCRIBE
AI Research 2
Android Malware 23
Artificial Intelligence 4
ChatGPT 3
Check Point Research Publications 455
Cloud Security 1
CPRadio 44
Crypto 2
Data & Threat Intelligence 2
Data Analysis 0
Demos 22
Global Cyber Attack Reports 408
How To Guides 13
Ransomware 5
Russo-Ukrainian War 1
Security Report 1
Threat and data analysis 0
Threat Research 174
Web 3.0 Security 11
Wipers 0
## 50 CVEs in 50 Days: Fuzzing Adobe Reader
Research By: Yoav Alon, Netanel Ben-Simon
Introduction
The year 2017 was an inflection point in the vulnerability landscape. The number of new vu
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.htmlhttp://secunia.com/advisories/43025http://security.gentoo.org/glsa/glsa-201101-08.xmlhttp://www.adobe.com/support/security/bulletins/apsb10-21.htmlhttp://www.redhat.com/support/errata/RHSA-2010-0743.htmlhttp://www.us-cert.gov/cas/techalerts/TA10-279A.htmlhttp://www.vupen.com/english/advisories/2011/0191https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7009http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.htmlhttp://secunia.com/advisories/43025http://security.gentoo.org/glsa/glsa-201101-08.xmlhttp://www.adobe.com/support/security/bulletins/apsb10-21.htmlhttp://www.redhat.com/support/errata/RHSA-2010-0743.htmlhttp://www.us-cert.gov/cas/techalerts/TA10-279A.htmlhttp://www.vupen.com/english/advisories/2011/0191https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7009
2010-10-06
Published