9.3

CVE-2010-0195

Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, do not properly handle fonts, which allows attackers to execute arbitrary code via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdobeAcrobat Version9.0
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version9.1
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version9.1.1
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version9.1.2
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version9.1.3
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version9.2
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version9.3
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version9.3.1
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version9.0
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version9.1
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version9.1.1
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version9.1.2
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version9.1.3
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version9.2
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version9.3
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version9.3.1
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version8.0
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version8.1
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version8.1.1
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version8.1.2
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version8.1.3
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version8.1.4
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version8.1.5
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version8.1.6
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version8.1.7
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version8.2
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Version8.2.1
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version8.0
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version8.1
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.1
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.2
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.4
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.5
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.6
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.7
   ApplemacOS X
   MicrosoftWindows
AdobeAcrobat Reader Version8.2.1
   ApplemacOS X
   MicrosoftWindows
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 5.57% 0.919
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

http://www.adobe.com/support/security/bulletins/apsb10-09.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/39329
http://www.us-cert.gov/cas/techalerts/TA10-103C.html
US Government Resource
http://www.vupen.com/english/advisories/2010/0873
Patch
Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7420