PT-2013-1347 · Adobe+2 · Reader+3

Published

2013-02-13

·

Updated

2025-02-13

·

CVE-2013-0641

CVSS v2.0

9.3

High

VectorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Adobe Reader and Acrobat versions 9.x through 9.5.3 Adobe Reader and Acrobat versions 10.x through 10.1.5 Adobe Reader and Acrobat version 11.0.1 Adobe Reader and Acrobat versions 11.x prior to 11.0.02
Description The issue is related to a buffer overflow in memory, allowing remote attackers to execute arbitrary code through a crafted PDF document. This was exploited in the wild in February 2013. The vulnerability enables attackers to run arbitrary code, posing a significant risk.
Recommendations For Adobe Reader and Acrobat versions 9.x through 9.5.3, update to version 9.5.4 or later. For Adobe Reader and Acrobat versions 10.x through 10.1.5, update to version 10.1.6 or later. For Adobe Reader and Acrobat version 11.0.1, update to version 11.0.02 or later. For Adobe Reader and Acrobat versions 11.x prior to 11.0.02, update to version 11.0.02 or later.

Fix

RCE

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-120

Related Identifiers

BDU:2022-03884
CVE-2013-0641
OPENSUSE-SU-2013_0335-1
OPENSUSE-SU-2013_0335-2
OPENSUSE-SU-2013_0342-1
RHSA-2013:0551
RHSA-2013_0551

Affected Products

Acrobat
Reader
Red Hat
Suse