CVE-2012-0776

Опубликовано: 10 апр. 2012

Источник: nvd

CVSS2: 10

EPSS Средний

Описание

The installer in Adobe Reader 9.x before 9.5.1 and 10.x before 10.1.3 allows attackers to bypass intended access restrictions and execute arbitrary code via unspecified vectors.

Ссылки

http://www.adobe.com/support/security/bulletins/apsb12-08.html
Patch
Vendor Advisory
http://www.securitytracker.com/id?1026908
http://www.us-cert.gov/cas/techalerts/TA12-101B.html
US Government Resource
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15270
http://www.adobe.com/support/security/bulletins/apsb12-08.html
Patch
Vendor Advisory
http://www.securitytracker.com/id?1026908
http://www.us-cert.gov/cas/techalerts/TA12-101B.html
US Government Resource
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15270

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:adobe:acrobat_reader:9.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.1.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.1.2:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.1.3:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.2:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.3:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.3.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.3.2:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.3.3:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.3.4:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.4:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.4.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.4.2:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.4.3:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.4.4:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.4.5:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.4.6:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.4.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat_reader:9.5:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:adobe:acrobat:9.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.0:-:pro:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.1:-:pro:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.1.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.1.2:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.1.3:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.2:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.3:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.3:-:pro:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.3.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.3.2:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.3.3:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.3.4:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.4:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.4.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.4.2:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.4.3:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.4.4:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.4.5:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.4.6:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.4.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:9.5:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:a:adobe:acrobat:10.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:10.0:-:pro:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:10.0.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:10.0.1:-:pro:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:10.0.2:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:10.0.3:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:10.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:10.1.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:acrobat:10.1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 97%

0.33042

Средний

10 Critical

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2012-0776

ubuntu

почти 14 лет назад

The installer in Adobe Reader 9.x before 9.5.1 and 10.x before 10.1.3 allows attackers to bypass intended access restrictions and execute arbitrary code via unspecified vectors.

GHSA-p542-h3rv-23cv

github

больше 3 лет назад

The installer in Adobe Reader 9.x before 9.5.1 and 10.x before 10.1.3 allows attackers to bypass intended access restrictions and execute arbitrary code via unspecified vectors.

EPSS

Процентиль: 97%

0.33042

Средний

10 Critical

CVSS2

Дефекты

CWE-264