CVSS: 10.0EPSS: 0%CPEs: 46EXPL: 0CVE-2014-0525
https://notcve.org/view.php?id=CVE-2014-0525
The API in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X does not prevent access to unmapped memory, which allows attackers to execute arbitrary code via unspecified API calls. La API en Adobe Reader y Acrobat 10.x anterior a 10.1.10 y 11.x anterior a 11.0.07 en Windows y OS X no previene acceso a memoria no mapeada, lo que permite a atacantes ejecutar código arbitrario a través de llamadas API no especificadas. • http://helpx.adobe.com/security/products/reader/apsb14-15.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 15%CPEs: 46EXPL: 0CVE-2014-0527 – Adobe Reader AcroPDF messageHandler Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-0527
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors. Vulnerabilidad de uso después de liberación en Adobe Reader y Acrobat 10.x anterior a 10.1.10 y 11.x anterior a 11.0.07 en Windows y OS X permite a atacantes ejecutar código arbitrario a través de vectores no especificados. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the AcroPDF ActiveX control. The issue lies in the messageHandler property of the control. • http://helpx.adobe.com/security/products/reader/apsb14-15.html • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 1%CPEs: 81EXPL: 0CVE-2013-1376 – acroread: multiple code execution flaws (APSB13-02)
https://notcve.org/view.php?id=CVE-2013-1376
Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-0606, CVE-2013-0612, CVE-2013-0615, CVE-2013-0617, and CVE-2013-0621. Desbordamiento de búfer en Adobe Reader y Acrobat 9.x anterior a la versión 9.5.3, 10.x anterior a 10.1.5, y 11.x anterior a la versión 11.0.1 permite a atacantes remotos ejecutar código arbitrario a través de vectores sin especificar, una vulnerabilidad diferente a CVE-2013-0606, CVE-2013-0612, CVE-2013-0615, CVE-2013-0617, y CVE-2013-0621. • http://www.adobe.com/support/security/bulletins/apsb13-02.html https://access.redhat.com/security/cve/CVE-2013-1376 https://bugzilla.redhat.com/show_bug.cgi?id=893235 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 51%CPEs: 42EXPL: 0CVE-2013-3357
https://notcve.org/view.php?id=CVE-2013-3357
Integer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-3358. Desbordamiento de entero en Adobe Reader y Acrobat anteriores a 10.1.8 y 11.x (anteriores a 11.0.04) en Windows y Mac OS X permite a atacantes ejecutar código a discrección a través de vectores no especificados, una vulnerabilidad diferente a CVE-2013-3358. • http://www.adobe.com/support/security/bulletins/apsb13-22.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19064 • CWE-189: Numeric Errors •
CVSS: 10.0EPSS: 0%CPEs: 42EXPL: 0CVE-2013-3352
https://notcve.org/view.php?id=CVE-2013-3352
Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-3354 and CVE-2013-3355. Adobe reader y Acrobat anteriores a 10.1.8 y 11.x (anteriores a 11.0.04) en Windows y mac OS X permite a atacantes ejecutar código a discrección o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados, una vulnerabilidad diferente a CVE-2013-3354 y CVE-2013-3355. • http://www.adobe.com/support/security/bulletins/apsb13-22.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18590 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •