Описание
Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allows remote attackers to execute arbitrary code via a crafted PDF document, as exploited in the wild in February 2013.
Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allows remote attackers to execute arbitrary code via a crafted PDF document, as exploited in the wild in February 2013.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2013-0641
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16296
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-0641
- http://blog.fireeye.com/research/2013/02/in-turn-its-pdf-time.html
- http://blogs.adobe.com/psirt/2013/02/adobe-reader-and-acrobat-vulnerability-report.html
- http://blogs.mcafee.com/mcafee-labs/digging-into-the-sandbox-escape-technique-of-the-recent-pdf-exploit
- http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00021.html
- http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00023.html
- http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00024.html
- http://rhn.redhat.com/errata/RHSA-2013-0551.html
- http://security.gentoo.org/glsa/glsa-201308-03.xml
- http://www.adobe.com/support/security/advisories/apsa13-02.html
- http://www.adobe.com/support/security/bulletins/apsb13-07.html
- http://www.kb.cert.org/vuls/id/422807
Связанные уязвимости
Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allows remote attackers to execute arbitrary code via a crafted PDF document, as exploited in the wild in February 2013.
Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allows remote attackers to execute arbitrary code via a crafted PDF document, as exploited in the wild in February 2013.
Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allows remote attackers to execute arbitrary code via a crafted PDF document, as exploited in the wild in February 2013.
Уязвимость программ просмотра и редактирования PDF-файлов Adobe Reader и Adobe Acrobat, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю выполнить произвольный код