System compromise in Adobe products

Posted: February 15, 2013 in Vulnerabilities
Tags: , ,

System compromise in Adobe products

System compromise in Adobe products

Vulnerability: System compromise in Adobe products

Danger level: Critical
Availability of fixes: Instructions on elimination
Number of vulnerabilities: 1

CVE ID: CVE-2013-0640
CVE-2013-0641
Vector of operation: Remote
Impact: System Compromise

Exploited by active exploitation of the vulnerability
Affected Products: Adobe Reader 9.x
Adobe Reader X 10.x
Adobe Reader XI 11.x
Adobe Acrobat 9.x
Adobe Acrobat X 10.x
Adobe Acrobat XI 11.x

Affected versions:
Adobe Reader 11.0.1, possibly the only one.
Adobe Reader 9.5.3, perhaps the only one.
Adobe Reader 10.1.5, possibly the only one.
Adobe Acrobat 9.5.3, perhaps the only one.
Adobe Acrobat 10.1.5, possibly the only one.
Adobe Acrobat 11.0.01, perhaps the only one.

Description:

The vulnerability allows a remote user to execute arbitrary code on the target system.

The vulnerability is caused due to an unspecified error. A remote user can execute arbitrary code on the target system.

Note: The vulnerability is being actively exploited in the present.

Manufacturer: Adobe Systems Inc.

Solution: To resolve the vulnerability, follow the manufacturer’s instructions.

http://www.adobe.com/support/security/advisories/apsa13-02.html

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s