CVE-2015-5097
published 2015-07-15CVE-2015-5097: Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and…
PriorityP260critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
18.86%
96.9th percentile
Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-5108 and CVE-2015-5109.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat | >= 10.0 < 10.1.15 | 10.1.15 |
| adobe | acrobat | 10.0 – 10.1.14 | — |
| adobe | acrobat | >= 11.0.0 < 11.0.12 | 11.0.12 |
| adobe | acrobat | 11.0.0 – 11.0.11 | — |
| adobe | acrobat_dc | >= 15.006.30033 < 15.006.30060 | 15.006.30060 |
| adobe | acrobat_dc | >= 15.007.20033 < 15.008.20082 | 15.008.20082 |
| adobe | acrobat_reader | >= 10.0 < 10.1.15 | 10.1.15 |
| adobe | acrobat_reader | 10.0 – 10.1.14 | — |
| adobe | acrobat_reader | >= 11.0.0 < 11.0.12 | 11.0.12 |
| adobe | acrobat_reader | 11.0.0 – 11.0.11 | — |
| adobe | acrobat_reader_dc | >= 15.006.30033 < 15.006.30060 | 15.006.30060 |
| adobe | acrobat_reader_dc | >= 15.007.20033 < 15.008.20082 | 15.008.20082 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-v4mj-2g55-rppc: Integer overflow in Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-13·CVSS 10.0
CVE-2015-5097 [CRITICAL] CWE-190 GHSA-v4mj-2g55-rppc: Integer overflow in Adobe Reader and Acrobat 10
Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-5108 and CVE-2015-5109.
GHSA
GHSA-8j37-r2fw-56qv: Integer overflow in Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-13·CVSS 10.0
CVE-2015-5109 [CRITICAL] CWE-190 GHSA-8j37-r2fw-56qv: Integer overflow in Adobe Reader and Acrobat 10
Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-5097 and CVE-2015-5108.
GHSA
GHSA-jq28-xhhr-qh2q: Integer overflow in Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-13·CVSS 10.0
CVE-2015-5108 [CRITICAL] CWE-190 GHSA-jq28-xhhr-qh2q: Integer overflow in Adobe Reader and Acrobat 10
Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-5097 and CVE-2015-5109.
No detection rules found.
No public exploits indexed.
2015-07-15
Published