CVSS: 9.8EPSS: 7%CPEs: 75EXPL: 0CVE-2011-2099 – acroread: multiple code execution flaws (APSB11-16)
https://notcve.org/view.php?id=CVE-2011-2099
16 Jun 2011 — Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2098. Adobe Reader y Acrobat v8.x anterior a v8.3, v9.x anterior a v9.4.5 y v10.x anterior a v10.1 en Windows y Mac OS X permiten a los atacantes ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria) a través de v... • http://osvdb.org/73061 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 75EXPL: 0CVE-2011-2101 – acroread: multiple code execution flaws (APSB11-16)
https://notcve.org/view.php?id=CVE-2011-2101
16 Jun 2011 — Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Windows and Mac OS X do not properly restrict script, which allows attackers to execute arbitrary code via a crafted document, related to a "cross document script execution vulnerability." Adobe Reader y Acrobat v8.x antes de v8.3, v9.x antes de v9.4.5, y v10.x antes de v10.1 en Windows y Mac OS X no funciona bien la restricción de la ejecución de secuencias de comandos, lo que permite a los atacantes ejecutar código arbitrar... • http://osvdb.org/73063 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.3EPSS: 5%CPEs: 75EXPL: 0CVE-2011-2094 – Adobe Acrobat Reader 3difr.x3d Multimedia Playing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-2094
14 Jun 2011 — Buffer overflow in Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2095 and CVE-2011-2097. Desbordamiento de búfer en Adobe Reader 8.x, anterior de Acrobat 8.3, 9.x anterior de 9.4.5, y 10.x anteror de 10.1 en Windows y Mac OS X que permite a los atacantes ejecutar código arbitrario a través de vectores no especificados, una vulnerabilidad difere... • http://www.adobe.com/support/security/bulletins/apsb11-16.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 5%CPEs: 75EXPL: 0CVE-2011-2095 – Adobe Acrobat Reader tesselate.x3d Multimedia Playing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-2095
14 Jun 2011 — Buffer overflow in Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2094 and CVE-2011-2097. Desbordamiento de búfer en Adobe Reader y Acrobat v8.x antes de v8.3, v9.x antes de v9.4.5, y v10.x antes de v10.1 en Windows y Mac OS X permite a los atacantes ejecutar código de su elección a través de vectores no especificados, una vulnerabilidad diferen... • http://www.adobe.com/support/security/bulletins/apsb11-16.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.1EPSS: 0%CPEs: 138EXPL: 0CVE-2011-2107 – flash-plugin: Cross-site scripting vulnerability (APSB11-13)
https://notcve.org/view.php?id=CVE-2011-2107
07 Jun 2011 — Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.181.22 on Windows, Mac OS X, Linux, and Solaris, and 10.3.185.22 and earlier on Android, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to a "universal cross-site scripting vulnerability." Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruzados (XSS) en Adobe Flash Player anteriores a v10.3.181.22 en Windows, Mac OS X, Linux, y Solaris, y v10.3.185.22 y ant... • http://googlechromereleases.blogspot.com/2011/06/stable-channel-update.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.3EPSS: 0%CPEs: 59EXPL: 0CVE-2011-0610
https://notcve.org/view.php?id=CVE-2011-0610
03 May 2011 — The CoolType library in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x before 9.4.4 and 10.x before 10.0.3 on Mac OS X, and Adobe Acrobat 9.x before 9.4.4 and 10.x before 10.0.3 on Windows and Mac OS X allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. La librería CoolType v9.x en Adobe Reader antes de v9.4.4 y v10.x hasta v10.0.1 para Windows, Adobe Reader v9.x antes de v9.4.4 y v10.x antes de v10.0... • http://www.adobe.com/support/security/bulletins/apsb11-08.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 95%CPEs: 28EXPL: 5CVE-2011-0611 – Adobe Flash Player Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-0611
13 Apr 2011 — Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x before 9.4.4 and 10.x before 10.0.3 on Mac OS X, and Adobe Acrobat 9.x before 9.4.4 and 10.x before 10.0.3 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via craf... • https://www.exploit-db.com/exploits/17473 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 9.3EPSS: 96%CPEs: 26EXPL: 1CVE-2011-0609 – Adobe Flash Player Unspecified Vulnerability
https://notcve.org/view.php?id=CVE-2011-0609
15 Mar 2011 — Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content, as demonstrated by a .swf file embedded in an Excel spreadsheet, and a... • https://www.exploit-db.com/exploits/17027 •
CVSS: 9.3EPSS: 0%CPEs: 57EXPL: 0CVE-2011-0564
https://notcve.org/view.php?id=CVE-2011-0564
10 Feb 2011 — Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows use weak permissions for unspecified files, which allows attackers to gain privileges via unknown vectors. Adobe Reader y Acrobat v10.x anterior a v10.0.1, v9.x anterior a v9.4.2, y v8.x anterior a v8.2.6 en Windows utiliza permisos débiles para archivos sin especificar, que permite a los atacantes obtener privilegios a través de vectores desconocidos. • http://www.adobe.com/support/security/bulletins/apsb11-03.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 3%CPEs: 59EXPL: 0CVE-2011-0586 – acroread: critical APSB11-03
https://notcve.org/view.php?id=CVE-2011-0586
10 Feb 2011 — Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X do not properly validate unspecified input data, which allows attackers to execute arbitrary code via unknown vectors. Adobe Reader y Acrobat v10.x anterior a v10.0.1, v9.x anterior a v9.4.2, y v8.x anterior a v8.2.6 en Windows y Mac OS X no valida correctamente la entrada de datos no especificados, que permite a los atacantes ejecutar código arbitrario a través de vectores desconocidos. • http://secunia.com/advisories/43470 • CWE-20: Improper Input Validation •