Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2012-0780

CWE-119 — Buffer Overflow4 documents4 sources

Severity

10.0CRITICAL

EPSS

32.0%

top 3.18%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Adobe Illustrator Cs5.5 Adobe Illustrator

Timeline

PublishedMay 9

Latest updateMay 17

Description

Adobe Illustrator before CS6 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2023, CVE-2012-2024, CVE-2012-2025, and CVE-2012-2026.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDadobe/illustrator_cs5.515

▶NVDadobe/illustrator13 versions+12

Patches

Patch: www.adobe.com ↗Patch: www.adobe.com ↗

🔴Vulnerability Details

GHSA

GHSA-38p9-j94m-w67p: Adobe Illustrator before CS6 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a di↗2022-05-17

▶

CVEList

CVE-2012-0780: Adobe Illustrator before CS6 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a di↗2012-05-09

▶

💥Exploits & PoCs

Exploit-DB

Adobe Illustrator CS5.5 - Memory Corruption↗2012-06-14

▶