CVE-2012-0774
published 2012-04-10CVE-2012-0774: Integer overflow in Adobe Reader and Acrobat 9.x before 9.5.1 and 10.x before 10.1.3 allows attackers to execute arbitrary code via a crafted TrueType font.
PriorityP354critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
15.65%
96.4th percentile
Integer overflow in Adobe Reader and Acrobat 9.x before 9.5.1 and 10.x before 10.1.3 allows attackers to execute arbitrary code via a crafted TrueType font.
Affected
47 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat10.0CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
acroread: multiple unspecified flaws (APSB12-08, APSB12-01)
vendor_redhat·2012-04-05·CVSS 10.0
CVE-2012-0774 [CRITICAL] acroread: multiple unspecified flaws (APSB12-08, APSB12-01)
acroread: multiple unspecified flaws (APSB12-08, APSB12-01)
Integer overflow in Adobe Reader and Acrobat 9.x before 9.5.1 and 10.x before 10.1.3 allows attackers to execute arbitrary code via a crafted TrueType font.
GHSA
GHSA-633j-5998-rq95: Integer overflow in Adobe Reader and Acrobat 9
ghsa_unreviewed·2022-05-14
CVE-2012-0774 [HIGH] GHSA-633j-5998-rq95: Integer overflow in Adobe Reader and Acrobat 9
Integer overflow in Adobe Reader and Acrobat 9.x before 9.5.1 and 10.x before 10.1.3 allows attackers to execute arbitrary code via a crafted TrueType font.
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00013.htmlhttp://lists.opensuse.org/opensuse-security-announce/2012-04/msg00016.htmlhttp://lists.opensuse.org/opensuse-security-announce/2012-04/msg00017.htmlhttp://rhn.redhat.com/errata/RHSA-2012-0469.htmlhttp://secunia.com/advisories/48756http://secunia.com/advisories/48846http://www.adobe.com/support/security/bulletins/apsb12-08.htmlhttp://www.securityfocus.com/bid/52951http://www.securitytracker.com/id?1026908http://www.us-cert.gov/cas/techalerts/TA12-101B.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14860http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00013.htmlhttp://lists.opensuse.org/opensuse-security-announce/2012-04/msg00016.htmlhttp://lists.opensuse.org/opensuse-security-announce/2012-04/msg00017.htmlhttp://rhn.redhat.com/errata/RHSA-2012-0469.htmlhttp://secunia.com/advisories/48756http://secunia.com/advisories/48846http://www.adobe.com/support/security/bulletins/apsb12-08.htmlhttp://www.securityfocus.com/bid/52951http://www.securitytracker.com/id?1026908http://www.us-cert.gov/cas/techalerts/TA12-101B.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14860
2012-04-10
Published