CVE-2013-2550 — Uncontrolled Resource Consumption in Adobe Acrobat Reader

CWE-400 — Uncontrolled Resource Consumption6 documents4 sources

Severity

7.5HIGHNVD

EPSS

3.1%

top 13.26%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Acrobat Reader

Timeline

PublishedMar 11

Latest updateMay 17

Description

Unspecified vulnerability in Adobe Reader 11.0.02 allows attackers to bypass the sandbox protection mechanism via unknown vectors, as demonstrated by George Hotz during a Pwn2Own competition at CanSecWest 2013.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDadobe/acrobat_reader11.0.02

🔴Vulnerability Details

GHSA

GHSA-f62p-643m-g7gx: Unspecified vulnerability in Adobe Reader 11↗2022-05-17

▶

📋Vendor Advisories

Red Hat

kernel: incorrectly accounted in-flight fds↗2016-02-22

▶

Red Hat

acroread: Unspecified vulnerability allows attackers to bypass the sandbox protection mechanism (CanSecWest 2013)↗2013-03-07

▶

💬Community

Bugzilla

CVE-2016-2550 kernel: incorrectly accounted in-flight fds↗2016-02-24

▶

Bugzilla

CVE-2013-2550 acroread: Unspecified vulnerability allows attackers to bypass the sandbox protection mechanism (CanSecWest 2013)↗2013-03-11

▶