System compromise in Adobe products
Vulnerability: System compromise in Adobe products
Danger level: Critical
Availability of fixes: Instructions on elimination
Number of vulnerabilities: 1
CVE ID: CVE-2013-0640
CVE-2013-0641
Vector of operation: Remote
Impact: System Compromise
Exploited by active exploitation of the vulnerability
Affected Products: Adobe Reader 9.x
Adobe Reader X 10.x
Adobe Reader XI 11.x
Adobe Acrobat 9.x
Adobe Acrobat X 10.x
Adobe Acrobat XI 11.x
Affected versions:
Adobe Reader 11.0.1, possibly the only one.
Adobe Reader 9.5.3, perhaps the only one.
Adobe Reader 10.1.5, possibly the only one.
Adobe Acrobat 9.5.3, perhaps the only one.
Adobe Acrobat 10.1.5, possibly the only one.
Adobe Acrobat 11.0.01, perhaps the only one.
Description:
The vulnerability allows a remote user to execute arbitrary code on the target system.
The vulnerability is caused due to an unspecified error. A remote user can execute arbitrary code on the target system.
Note: The vulnerability is being actively exploited in the present.
Manufacturer: Adobe Systems Inc.
Solution: To resolve the vulnerability, follow the manufacturer’s instructions.
http://www.adobe.com/support/security/advisories/apsa13-02.html
