CVE-2013-2729
CVE-2013-2729
In short
Adobe Reader and Acrobat contain an integer overflow flaw that allows attackers to execute arbitrary code on a user's computer when processing specially crafted PDF files. This is a critical security issue because it gives attackers complete control over the affected system.
Technical detail
Integer overflow vulnerability in Adobe Reader/Acrobat versions 9.x (before 9.5.5), 10.x (before 10.1.7), and 11.x (before 11.0.03) allows remote code execution through unspecified vectors. The attack vector is network-based via malicious PDF files, with the precondition that a user must open the crafted document, resulting in arbitrary code execution with user privileges.
Summary generated and translated by AI from the official description.
Integer overflow in Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-2727.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 2
githubgithub.com/feliam/CVE-2013-2729★ 24exploitdbwww.exploit-db.com/exploits/26703unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00004.htmlhttp://rhn.redhat.com/errata/RHSA-2013-0826.htmlhttp://security.gentoo.org/glsa/glsa-201308-03.xmlhttps://github.com/cisagov/vulnrichment/issues/199https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16717https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-2729http://www.adobe.com/support/security/bulletins/apsb13-15.html