CVSS: 9.3EPSS: 8%CPEs: 40EXPL: 0CVE-2010-0194 – Acroread: Multiple code execution flaws (APSB10-09)
https://notcve.org/view.php?id=CVE-2010-0194
14 Apr 2010 — Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allow attackers to cause a denial of service (memory corruption) or execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-0197, CVE-2010-0201, and CVE-2010-0204. Adobe Reader y Acrobat v9.x anterior v9.3.2, y v8.x anterior v8.2.2 en Windows y Mac OS X, permite a atacantes causar una denegación de servicio (caída de aplicación) o ejecutar código de su elección a través de vectores no esp... • http://www.adobe.com/support/security/bulletins/apsb10-09.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 24%CPEs: 40EXPL: 0CVE-2010-0195 – Adobe Reader TrueType Font Handling Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-0195
13 Apr 2010 — Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, do not properly handle fonts, which allows attackers to execute arbitrary code via unspecified vectors. Adobe Reader y Acrobat v9.x anterior v9.3.2, y v8.x anterior v8.2.2 en Windows y Mac OS X, no maneja adecuadamente fuentes, lo que permite a atacantes ejecutar código de su elección a través de vectores no especificados. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations o... • http://www.adobe.com/support/security/bulletins/apsb10-09.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 30%CPEs: 2EXPL: 7CVE-2010-1240 – Adobe PDF - Embedded EXE Social Engineering
https://notcve.org/view.php?id=CVE-2010-1240
05 Apr 2010 — Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, do not restrict the contents of one text field in the Launch File warning dialog, which makes it easier for remote attackers to trick users into executing an arbitrary local program that was specified in a PDF document, as demonstrated by a text field that claims that the Open button will enable the user to read an encrypted message. Reader y Acrobat de Adobe versiones 9.x anteriores a 9.3.3, y versiones 8.x anteriores ... • https://www.exploit-db.com/exploits/16671 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 4%CPEs: 20EXPL: 1CVE-2010-1241 – Acroread: Heap-based overflow by opening a specially-crafted PDF file (FG-VD-10-005)
https://notcve.org/view.php?id=CVE-2010-1241
05 Apr 2010 — Heap-based buffer overflow in the custom heap management system in Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document, aka FG-VD-10-005. El desbordamiento de búfer en la región heap de la memoria en el sistema de administración de la pila personalizado en Reader y Acrobat versiones 9.x anteriores a 9.3.2, y versiones 8.x anteriores a 8.2.2 de Ado... • http://blog.fortinet.com/the-upcoming-blackhat-europe-2010-presentation • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •