PT-2014-1402 · Adobe · Reader+1
Published
2014-05-13
·
Updated
2014-05-14
·
CVE-2014-0525
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Reader versions 10.x through 10.1.9
Adobe Reader versions 11.x through 11.0.06
Adobe Acrobat versions 10.x through 10.1.9
Adobe Acrobat versions 11.x through 11.0.06
Description
The API in Adobe Reader and Acrobat does not prevent access to unmapped memory, allowing attackers to execute arbitrary code via unspecified API calls. This issue enables attackers to exploit the vulnerability and execute arbitrary code using API calls.
Recommendations
For Adobe Reader versions 10.x through 10.1.9, update to version 10.1.10 or later.
For Adobe Reader versions 11.x through 11.0.06, update to version 11.0.07 or later.
For Adobe Acrobat versions 10.x through 10.1.9, update to version 10.1.10 or later.
For Adobe Acrobat versions 11.x through 11.0.06, update to version 11.0.07 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Acrobat
Reader