Vulnerability Description
Multiple unspecified vulnerabilities in Adobe Reader through 10.1.4 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document, related to "sixteen more crashes affecting Windows, OS X, or both systems."
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Acrobat Reader | 3.0 |
| Apple | Mac Os X | All versions |
| Linux | Linux Kernel | All versions |
| Microsoft | Windows | All versions |
References
- http://gynvael.coldwind.pl/?id=483
- http://j00ru.vexillium.org/?p=1175
- http://security.gentoo.org/glsa/glsa-201308-03.xml
- http://vexillium.org/dl.php?ar_callstack.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78587
- http://gynvael.coldwind.pl/?id=483
- http://j00ru.vexillium.org/?p=1175
- http://security.gentoo.org/glsa/glsa-201308-03.xml
- http://vexillium.org/dl.php?ar_callstack.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78587
FAQ
What is CVE-2012-4363?
CVE-2012-4363 is a vulnerability with a CVSS score of 9.3 (HIGH). Multiple unspecified vulnerabilities in Adobe Reader through 10.1.4 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF documen...
How severe is CVE-2012-4363?
CVE-2012-4363 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-4363?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Acrobat Reader, Apple Mac Os X, Linux Linux Kernel, Microsoft Windows.