⚠ Exploited in the wild
Exploitation observed in the wild. Not yet on CISA KEV.

CVE-2011-4369Out-of-bounds Write in Adobe Acrobat

5 documents5 sources
Severity
10.0CRITICALNVD
EPSS
18.7%
top 4.70%
CISA KEV
Not in KEV
Exploit
Exploited in wild
Active exploitation observed
Affected products
2
Adobe AcrobatAdobe Acrobat Reader
Timeline
PublishedDec 16
Latest updateMay 17

Description

Unspecified vulnerability in the PRC component in Adobe Reader and Acrobat 9.x before 9.4.7 on Windows, Adobe Reader and Acrobat 9.x through 9.4.6 on Mac OS X, Adobe Reader and Acrobat 10.x through 10.1.1 on Windows and Mac OS X, and Adobe Reader 9.x through 9.4.6 on UNIX allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, as exploited in the wild in December 2011.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

NVDadobe/acrobat_reader24 versions+23
NVDadobe/acrobat24 versions+23

Patches

Patch: www.adobe.comPatch: www.adobe.com

🔴Vulnerability Details

2
GHSA
GHSA-22rc-rfv9-53mr: Unspecified vulnerability in the PRC component in Adobe Reader and Acrobat 92022-05-17
VulnCheck
Adobe Reader and Acrobat PRC component Remote Code Execution2011

📋Vendor Advisories

1
Red Hat
acroread: unspecified vulnerability in PRC component (APSB11-30)2011-12-16

💬Community

1
Bugzilla
CVE-2011-4369 acroread: unspecified vulnerability in PRC component (APSB11-30)2011-12-16
CVE-2011-4369 — Out-of-bounds Write in Adobe Acrobat | cvebase