⚠ Actively exploited
Added to CISA KEV on 2022-06-08. Federal agencies required to patch by 2022-06-22. Required action: Apply updates per vendor instructions..

CVE-2011-2462Out-of-bounds Write in Adobe Acrobat

CWE-787Out-of-bounds Write15 documents11 sources
Severity
9.8CRITICALNVD
EPSS
91.9%
top 0.30%
CISA KEV
KEV
Added 2022-06-08
Due 2022-06-22
Exploit
Exploited in wild
Active exploitation observed
Affected products
2
Adobe AcrobatAdobe Acrobat Reader
Timeline
PublishedDec 7
KEV addedJun 8
KEV dueJun 22
CISA Required Action: Apply updates per vendor instructions.

Description

Unspecified vulnerability in the U3D component in Adobe Reader and Acrobat 10.1.1 and earlier on Windows and Mac OS X, and Adobe Reader 9.x through 9.4.6 on UNIX, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, as exploited in the wild in December 2011.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

NVDadobe/acrobat_reader9.09.4.6+1
NVDadobe/acrobat10.1.1

🔴Vulnerability Details

2
GHSA
GHSA-g2wp-w28c-8vg2: Unspecified vulnerability in the U3D component in Adobe Reader and Acrobat 102022-05-17
VulnCheck
Adobe Reader and Acrobat Universal 3D Memory Corruption Vulnerability2011

💥Exploits & PoCs

2
Exploit-DB
Adobe Reader - U3D Memory Corruption (Metasploit)2012-01-14
Metasploit
Adobe Reader U3D Memory Corruption Vulnerability

🔍Detection Rules

3
Suricata
ET MALWARE Backdoor.Win32.Sykipot Put2011-12-09
Suricata
ET MALWARE Backdoor.Win32.Sykipot Get Config Request2011-12-09
Suricata
ET MALWARE Backdoor.Win32.Sykipot Checkin2011-12-09

📋Vendor Advisories

2
CISA
Adobe Reader and Acrobat Universal 3D Memory Corruption Vulnerability2022-06-08
Red Hat
acroread: U3D memory corruption vulnerability (APSB11-30)2011-12-06

🕵️Threat Intelligence

4
Qualys
US-CERT: Top 30 Vulnerabilities | Qualys2015-05-01
Qualys
US-CERT: Top 30 Vulnerabilities | Qualys2015-05-01
Talos
Threat Spotlight: Group 72, Opening the ZxShell2014-10-28
Talos
Threat Spotlight: Group 72, Opening the ZxShell2014-10-28

💬Community

1
Bugzilla
CVE-2011-2462 acroread: U3D memory corruption vulnerability (APSB11-30)2011-12-07
CVE-2011-2462 — Out-of-bounds Write in Adobe Acrobat | cvebase