Vulnerability Description
Buffer overflow in Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a PDF file containing Flash content with a crafted #1023 (3FFh) tag, a different vulnerability than CVE-2010-1295, CVE-2010-2202, CVE-2010-2207, CVE-2010-2209, CVE-2010-2210, and CVE-2010-2211.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Acrobat | 9.0 |
| Apple | Mac Os X | All versions |
| Microsoft | Windows | All versions |
| Adobe | Acrobat Reader | 9.0 |
Related Weaknesses (CWE)
References
- http://www.adobe.com/support/security/bulletins/apsb10-15.htmlPatchVendor Advisory
- http://www.securityfocus.com/archive/1/512095/100/0/threaded
- http://www.securitytracker.com/id?1024159
- http://www.vupen.com/english/advisories/2010/1636
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://www.adobe.com/support/security/bulletins/apsb10-15.htmlPatchVendor Advisory
- http://www.securityfocus.com/archive/1/512095/100/0/threaded
- http://www.securitytracker.com/id?1024159
- http://www.vupen.com/english/advisories/2010/1636
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2010-2212?
CVE-2010-2212 is a vulnerability with a CVSS score of 9.3 (HIGH). Buffer overflow in Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) ...
How severe is CVE-2010-2212?
CVE-2010-2212 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-2212?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Acrobat, Apple Mac Os X, Microsoft Windows, Adobe Acrobat Reader.