CVE-2013-0611 – acroread: multiple code execution flaws (APSB13-02)
https://notcve.org/view.php?id=CVE-2013-0611
Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allow attackers to execute arbitrary code via unspecified vectors, related to a "logic error," a different vulnerability than CVE-2013-0607, CVE-2013-0608, CVE-2013-0614, and CVE-2013-0618. Adobe Reader y Acrobat v9.x antes de v9.5.3, v10.x antes de v10.1.5 y v11.x antes de v11.0.1 permiten a un atacante ejecutar código de su elección a través de vectores no especificados. Se trata de un problema relacionado con un "error lógico". Se trata de una vulnerabilidad diferente a CVE-2013-0607, CVE-2013-0608, CVE-2013-0614 y CVE-2013-0618. • http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00004.html http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00005.html http://lists.opensuse.org/opensuse-updates/2013-01/msg00028.html http://lists.opensuse.org/opensuse-updates/2013-01/msg00081.html http://rhn.redhat.com/errata/RHSA-2013-0150.html http://security.gentoo.org/glsa/glsa-201308-03.xml http://www.adobe.com/support/security/bulletins/apsb13-02.html https://oval.cisecurity.org/repository/search/defi • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2013-0608 – acroread: multiple code execution flaws (APSB13-02)
https://notcve.org/view.php?id=CVE-2013-0608
Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allow attackers to execute arbitrary code via unspecified vectors, related to a "logic error," a different vulnerability than CVE-2013-0607, CVE-2013-0611, CVE-2013-0614, and CVE-2013-0618. Adobe Reader y Acrobat v9.x antes de v9.5.3, v10.x antes de v10.1.5 y v11.x antes de v11.0.1 permiten a un atacante ejecutar código de su elección a través de vectores no especificados. Se trata de un problema relacionado con un "error lógico". Se trata de una vulnerabilidad diferente a CVE-2013-0607, CVE-2013-0611, CVE-2013-0614 y CVE-2013-0618. • http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00004.html http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00005.html http://lists.opensuse.org/opensuse-updates/2013-01/msg00028.html http://lists.opensuse.org/opensuse-updates/2013-01/msg00081.html http://rhn.redhat.com/errata/RHSA-2013-0150.html http://security.gentoo.org/glsa/glsa-201308-03.xml http://www.adobe.com/support/security/bulletins/apsb13-02.html https://oval.cisecurity.org/repository/search/defi • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2013-0616 – acroread: multiple code execution flaws (APSB13-02)
https://notcve.org/view.php?id=CVE-2013-0616
Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-1530, CVE-2013-0601, CVE-2013-0605, CVE-2013-0619, CVE-2013-0620, and CVE-2013-0623. Adobe Reader y Acrobat v9.x antes de v9.5.3, v10.x antes de v10.1.5 y v11.x antes de v11.0.1 permiten a un atacante ejecutar código de su elección o causar una denegación de servicio (por corrupción de la memoria) a través de vectores no especificados. Se trata de una vulnerabilidad diferente a CVE-2012-1530, CVE-2013-0601, CVE-2013-0605, CVE-2013-0619, CVE-2013-0620 y CVE-2013-0623. • http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00004.html http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00005.html http://lists.opensuse.org/opensuse-updates/2013-01/msg00028.html http://lists.opensuse.org/opensuse-updates/2013-01/msg00081.html http://rhn.redhat.com/errata/RHSA-2013-0150.html http://security.gentoo.org/glsa/glsa-201308-03.xml http://www.adobe.com/support/security/bulletins/apsb13-02.html https://oval.cisecurity.org/repository/search/defi •
CVE-2012-1525
https://notcve.org/view.php?id=CVE-2012-1525
Heap-based buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.2 and 10.x before 10.1.4 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer basado en memoria dinámica ('heap') en Adobe Reader y Acrobat v9.x antes de v9.5.2 y v10.x antes de v10.1.4 en Windows y Mac OS X permite a los atacantes ejecutar código de su elección a través de vectores no especificados. • http://security.gentoo.org/glsa/glsa-201308-03.xml http://www.adobe.com/support/security/bulletins/apsb12-16.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16422 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2012-2049
https://notcve.org/view.php?id=CVE-2012-2049
Stack-based buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.2 and 10.x before 10.1.4 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en Adobe Reader y Acrobat v9.x anterior a v9.5.2 y v10.x anterior a v10.1.4 en Windows y Mac OS X permite a atacantes ejecutar código arbitrario mediante vectores desconocidos. • http://security.gentoo.org/glsa/glsa-201308-03.xml http://www.adobe.com/support/security/bulletins/apsb12-16.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15463 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •