CVE-2013-0640

Severity CVSS v4.0:
Pending analysis
Type:
CWE-787 Out-of-bounds Write
Publication date:
14/02/2013
Last modified:
11/04/2025

Description

Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document, as exploited in the wild in February 2013.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:* 9.0 (including) 9.5.4 (excluding)
cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:* 10.0 (including) 10.1.6 (excluding)
cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:* 11.0 (including) 11.0.02 (excluding)
cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:* 10.0 (including) 10.1.6 (excluding)
cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:* 11.0 (including) 11.0.02 (excluding)
cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:*:*:-:*:*:*
cpe:2.3:o:suse:linux_enterprise_desktop:11:sp2:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:5.9:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:6.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools