CVSS: 9.3EPSS: 2%CPEs: 64EXPL: 0CVE-2014-9161 – Adobe Reader X / XI Out Of Bounds Read
https://notcve.org/view.php?id=CVE-2014-9161
CoolType.dll in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows, and 10.x through 10.1.13 and 11.x through 11.0.10 on OS X, allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted PDF document. CoolType.dll en Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows, y 10.x hasta 10.1.13 y 11.x hasta 11.0.10 en OS X, permite a atacantes remotos causar una denegación de servicio (lectura fuera de rango) o posiblemente tener otro impacto no especificado a través de un documento PDF manipulado. Adobe Reader X and XI for Windows suffer from an out-of-bounds read in CoolType.dll. • http://code.google.com/p/google-security-research/issues/detail?id=149 http://packetstormsecurity.com/files/134394/Adobe-Reader-X-XI-Out-Of-Bounds-Read.html http://www.securityfocus.com/bid/74600 http://www.securitytracker.com/id/1032284 https://helpx.adobe.com/security/products/reader/apsb15-10.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 84%CPEs: 58EXPL: 0CVE-2014-8447
https://notcve.org/view.php?id=CVE-2014-8447
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8456, CVE-2014-8458, CVE-2014-8459, CVE-2014-8461, and CVE-2014-9158. Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows y OS X permiten a atacantes ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados, una vulnerabilidad diferente a CVE-2014-8445, CVE-2014-8446, CVE-2014-8456, CVE-2014-8458, CVE-2014-8459, CVE-2014-8461, y CVE-2014-9158. • http://helpx.adobe.com/security/products/reader/apsb14-28.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 5.0EPSS: 0%CPEs: 58EXPL: 0CVE-2014-8453
https://notcve.org/view.php?id=CVE-2014-8453
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow remote attackers to bypass the Same Origin Policy via unspecified vectors. Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows y OS X permiten a atacantes remotos evadir Same Origin Policy a través de vectores no especifcados. • http://helpx.adobe.com/security/products/reader/apsb14-28.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 84%CPEs: 58EXPL: 0CVE-2014-8456
https://notcve.org/view.php?id=CVE-2014-8456
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8458, CVE-2014-8459, CVE-2014-8461, and CVE-2014-9158. Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows y OS X permiten a atacantes ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados, una vulnerabilidad diferente a CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8458, CVE-2014-8459, CVE-2014-8461, y CVE-2014-9158. • http://helpx.adobe.com/security/products/reader/apsb14-28.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 83%CPEs: 58EXPL: 0CVE-2014-8457
https://notcve.org/view.php?id=CVE-2014-8457
Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8460 and CVE-2014-9159. Desbordamiento de buffer basado en memoria dinámica en Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows y OS X permite a atacantes ejecutar código arbitrario a través de vectores no especificados, una vulnerabilidad diferente a CVE-2014-8460 y CVE-2014-9159. • http://helpx.adobe.com/security/products/reader/apsb14-28.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •