Vulnerability Description
CoolType.dll in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows, and 10.x through 10.1.13 and 11.x through 11.0.10 on OS X, allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted PDF document.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Acrobat Reader | 10.1.13 |
| Apple | Mac Os X | All versions |
| Adobe | Acrobat | 10.0 |
| Microsoft | Windows | All versions |
Related Weaknesses (CWE)
References
- http://code.google.com/p/google-security-research/issues/detail?id=149
- http://packetstormsecurity.com/files/134394/Adobe-Reader-X-XI-Out-Of-Bounds-Read
- http://www.securityfocus.com/bid/74600
- http://www.securitytracker.com/id/1032284
- https://helpx.adobe.com/security/products/reader/apsb15-10.htmlVendor Advisory
- http://code.google.com/p/google-security-research/issues/detail?id=149
- http://packetstormsecurity.com/files/134394/Adobe-Reader-X-XI-Out-Of-Bounds-Read
- http://www.securityfocus.com/bid/74600
- http://www.securitytracker.com/id/1032284
- https://helpx.adobe.com/security/products/reader/apsb15-10.htmlVendor Advisory
FAQ
What is CVE-2014-9161?
CVE-2014-9161 is a vulnerability with a CVSS score of 9.3 (HIGH). CoolType.dll in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows, and 10.x through 10.1.13 and 11.x through 11.0.10 on OS X, allows remote attackers to cause a denial of...
How severe is CVE-2014-9161?
CVE-2014-9161 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-9161?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Acrobat Reader, Apple Mac Os X, Adobe Acrobat, Microsoft Windows.