CVSS: 6.1EPSS: 2%CPEs: 56EXPL: 0CVE-2014-0562
https://notcve.org/view.php?id=CVE-2014-0562
17 Sep 2014 — Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on OS X allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)." Vulnerabilidad de XSS en Adobe Reader y Acrobat 10.x anterior a 10.1.12 y 11.x anterior a 11.0.09 en OS X permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de vectores no especificados, también conocido como 'Universal XSS (UXSS)'. • http://helpx.adobe.com/security/products/reader/apsb14-20.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.8EPSS: 0%CPEs: 56EXPL: 0CVE-2014-0563
https://notcve.org/view.php?id=CVE-2014-0563
17 Sep 2014 — Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to cause a denial of service (memory corruption) via unspecified vectors. Adobe Reader y Acrobat 10.x anterior a 10.1.12 y 11.x anterior a 11.0.09 en Windows y OS X permiten a atacantes causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados. • http://helpx.adobe.com/security/products/reader/apsb14-20.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 6%CPEs: 56EXPL: 0CVE-2014-0565
https://notcve.org/view.php?id=CVE-2014-0565
17 Sep 2014 — Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0566. Adobe Reader y Acrobat 10.x anterior a 10.1.12 y 11.x anterior a 11.0.09 en Windows y OS X permiten a atacantes ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados, una vulnerabilidad dife... • http://helpx.adobe.com/security/products/reader/apsb14-20.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 12%CPEs: 12EXPL: 0CVE-2014-0566
https://notcve.org/view.php?id=CVE-2014-0566
17 Sep 2014 — Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0565. Adobe Reader y Acrobat 10.x anterior a 10.1.12 y 11.x anterior a 11.0.09 en Windows y OS X apermiten a atacantes ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados, una vulnerabilidad dif... • http://helpx.adobe.com/security/products/reader/apsb14-20.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 1%CPEs: 54EXPL: 0CVE-2014-0568
https://notcve.org/view.php?id=CVE-2014-0568
17 Sep 2014 — The NtSetInformationFile system call hook feature in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows allows attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via an NTFS junction attack. La funcionalidad de acople a llamada de sistema NtSetInformationFile en Adobe Reader y Acrobat 10.x en versiones anteriores a 10.1.12 y 11.x en versiones anteriores a 11.0.09 en Windows permite a atacantes eludir un mecanismo de ... • http://helpx.adobe.com/security/products/reader/apsb14-20.html •
CVSS: 10.0EPSS: 43%CPEs: 56EXPL: 0CVE-2014-0561 – Adobe Reader 3DIF Plugin Heap Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-0561
16 Sep 2014 — Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0567. Desbordamiento de buffer basado en memoria dinámica en Adobe Reader y Acrobat 10.x anterior a 10.1.12 y 11.x anterior a 11.0.09 en Windows y OS X permite a atacantes ejecutar código arbitrario a través de vectores no especificados, una vulnerabilidad diferente a CVE-2014-0567. T... • http://helpx.adobe.com/security/products/reader/apsb14-20.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 43%CPEs: 56EXPL: 0CVE-2014-0567 – Adobe Reader replace() Heap Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-0567
16 Sep 2014 — Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0561. Desbordamiento de buffer basado en memoria dinámica en Adobe Reader y Acrobat 10.x anterior a 10.1.12 y 11.x anterior a 11.0.09 en Windows y OS X permite a atacantes ejecutar código arbitrario a través de vectores no especificados, una vulnerabilidad diferente a CVE-2014-0561. T... • http://helpx.adobe.com/security/products/reader/apsb14-20.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0CVE-2014-0546 – Adobe Acrobat and Reader Sandbox Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2014-0546
12 Aug 2014 — Adobe Reader and Acrobat 10.x before 10.1.11 and 11.x before 11.0.08 on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via unspecified vectors. Adobe Reader y Acrobat 10.x anterior a 10.1.11 y 11.x anterior a 11.0.08 en Windows permiten a atacantes evadir un mecanismo de protección sandbox, y como consecuencia ejecutar código nativo en un contexto privilegiado, a través de vectores no especificados. Adobe Acrobat and Reader on ... • http://helpx.adobe.com/security/products/reader/apsb14-19.html •
CVSS: 6.5EPSS: 12%CPEs: 46EXPL: 1CVE-2014-0521
https://notcve.org/view.php?id=CVE-2014-0521
14 May 2014 — Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X do not properly implement JavaScript APIs, which allows remote attackers to obtain sensitive information via a crafted PDF document. Adobe Reader y Acrobat 10.x anterior a 10.1.10 y 11.x anterior a 11.0.07 en Windows y OS X no implementen debidamente APIs JavaScript, lo que permite a atacantes remotos obtener información sensible a través de un documento PDF manipulado. • https://github.com/molnarg/cve-2014-0521 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 0%CPEs: 46EXPL: 0CVE-2014-0522
https://notcve.org/view.php?id=CVE-2014-0522
14 May 2014 — Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0523, CVE-2014-0524, and CVE-2014-0526. Adobe Reader y Acrobat 10.x anterior a 10.1.10 y 11.x anterior a 11.0.07 en Windows y OS X permiten a atacantes ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de vectores no espe... • http://helpx.adobe.com/security/products/reader/apsb14-15.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •