1. Home
  2. CVE Database
  3. CVE-2011-0596
HIGH · 9.3

CVE-2011-0596

The Bitmap parsing component in 2d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code v...

Vulnerability Description

The Bitmap parsing component in 2d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via an image with crafted (1) height and (2) width values for an RLE_8 compressed bitmap, which triggers a heap-based buffer overflow, a different vulnerability than CVE-2011-0598, CVE-2011-0599, and CVE-2011-0602.

CVSS Score

9.3

HIGH

AV:N/AC:M/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
AdobeAcrobat Reader8.0
AppleMac Os XAll versions
MicrosoftWindowsAll versions
AdobeAcrobat8.0

Related Weaknesses (CWE)

CWE-20

References

FAQ

What is CVE-2011-0596?

CVE-2011-0596 is a vulnerability with a CVSS score of 9.3 (HIGH). The Bitmap parsing component in 2d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code v...

How severe is CVE-2011-0596?

CVE-2011-0596 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2011-0596?

Check the references section above for vendor advisories and patch information. Affected products include: Adobe Acrobat Reader, Apple Mac Os X, Microsoft Windows, Adobe Acrobat.