cbcvebase.
CVE-2012-1525
published 2012-08-15

CVE-2012-1525: Heap-based buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.2 and 10.x before 10.1.4 on Windows and Mac OS X allows attackers to execute arbitrary…

PriorityP260critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
31.84%
98.1th percentile
Heap-based buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.2 and 10.x before 10.1.4 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors.

Affected

59 ranges· showing 25
VendorProductVersion rangeFixed in
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat

Detection & IOCsextracted from sources · hover to see the quote

  • ·Vulnerability is described with 'unspecified vectors' — no specific attack vector, payload, or exploitation method is disclosed in the available sources, making it impossible to derive concrete IOCs or behavioral detection hints.
  • ·Affected packages confirmed on Red Hat Enterprise Linux 5 and 6 (acroread), as well as Adobe Reader/Acrobat 9.x before 9.5.2 and 10.x before 10.1.4 on Windows and Mac OS X. Detection should focus on identifying vulnerable version ranges of these packages.

CVSS provenance

nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat10.0CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.