CVE-2011-0592
published 2011-02-10CVE-2011-0592: Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code…
PriorityP358critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
47.60%
98.7th percentile
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, related to "Texture bmp," a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600.
Affected
55 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vmqj-vh6g-cjq3: Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-14·CVSS 9.3
CVE-2011-0591 [CRITICAL] CWE-20 GHSA-vmqj-vh6g-cjq3: Adobe Reader and Acrobat 10
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, related to Texture and rgba, a different vulnerability than CVE-2011-0590, CVE-2011-0592, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600.
GHSA
GHSA-39c8-3fh7-57wr: The U3D component in Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-14·CVSS 9.3
CVE-2011-0600 [CRITICAL] CWE-20 GHSA-39c8-3fh7-57wr: The U3D component in Adobe Reader and Acrobat 10
The U3D component in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a 3D file with an invalid Parent Node count that triggers an incorrect size calculation and memory corruption, a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, and CVE-2011-0595.
GHSA
GHSA-cj48-gr7g-jvm7: Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-14·CVSS 9.3
CVE-2011-0595 [CRITICAL] CWE-20 GHSA-cj48-gr7g-jvm7: Adobe Reader and Acrobat 10
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, and CVE-2011-0600.
GHSA
GHSA-g2g7-mp7p-qwgx: Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-14·CVSS 9.3
CVE-2011-0592 [CRITICAL] CWE-20 GHSA-g2g7-mp7p-qwgx: Adobe Reader and Acrobat 10
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, related to "Texture bmp," a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600.
GHSA
GHSA-phmp-vmqj-g6v8: Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-14·CVSS 9.3
CVE-2011-0593 [CRITICAL] CWE-20 GHSA-phmp-vmqj-g6v8: Adobe Reader and Acrobat 10
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0595, and CVE-2011-0600.
GHSA
GHSA-fhxv-c3fv-fh8h: Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-14·CVSS 9.3
CVE-2011-0590 [CRITICAL] CWE-20 GHSA-fhxv-c3fv-fh8h: Adobe Reader and Acrobat 10
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a 3D file, a different vulnerability than CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600.
Red Hat
acroread: critical APSB11-03
vendor_redhat·2011-02-08·CVSS 9.3
CVE-2011-0595 [CRITICAL] acroread: critical APSB11-03
acroread: critical APSB11-03
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, and CVE-2011-0600.
Red Hat
acroread: critical APSB11-03
vendor_redhat·2011-02-08·CVSS 9.3
CVE-2011-0600 [CRITICAL] acroread: critical APSB11-03
acroread: critical APSB11-03
The U3D component in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a 3D file with an invalid Parent Node count that triggers an incorrect size calculation and memory corruption, a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, and CVE-2011-0595.
Red Hat
acroread: critical APSB11-03
vendor_redhat·2011-02-08·CVSS 9.3
CVE-2011-0591 [CRITICAL] acroread: critical APSB11-03
acroread: critical APSB11-03
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, related to Texture and rgba, a different vulnerability than CVE-2011-0590, CVE-2011-0592, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600.
Red Hat
acroread: critical APSB11-03
vendor_redhat·2011-02-08·CVSS 9.3
CVE-2011-0592 [CRITICAL] acroread: critical APSB11-03
acroread: critical APSB11-03
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, related to "Texture bmp," a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600.
Red Hat
acroread: critical APSB11-03
vendor_redhat·2011-02-08·CVSS 9.3
CVE-2011-0593 [CRITICAL] acroread: critical APSB11-03
acroread: critical APSB11-03
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0595, and CVE-2011-0600.
Red Hat
acroread: critical APSB11-03
vendor_redhat·2011-02-08·CVSS 9.3
CVE-2011-0590 [CRITICAL] acroread: critical APSB11-03
acroread: critical APSB11-03
Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a 3D file, a different vulnerability than CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600.
No detection rules found.
No public exploits indexed.
http://secunia.com/advisories/43470http://www.adobe.com/support/security/bulletins/apsb11-03.htmlhttp://www.redhat.com/support/errata/RHSA-2011-0301.htmlhttp://www.securityfocus.com/bid/46210http://www.securitytracker.com/id?1025033http://www.vupen.com/english/advisories/2011/0337http://www.vupen.com/english/advisories/2011/0492http://www.zerodayinitiative.com/advisories/ZDI-11-068/https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11819http://secunia.com/advisories/43470http://www.adobe.com/support/security/bulletins/apsb11-03.htmlhttp://www.redhat.com/support/errata/RHSA-2011-0301.htmlhttp://www.securityfocus.com/bid/46210http://www.securitytracker.com/id?1025033http://www.vupen.com/english/advisories/2011/0337http://www.vupen.com/english/advisories/2011/0492http://www.zerodayinitiative.com/advisories/ZDI-11-068/https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11819
2011-02-10
Published