CVE-2010-2883 in Acrobat Reader
Summary
Stack-based buffer overflow in CoolType.dll in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PDF document with a long field in a Smart INdependent Glyphlets (SING) table in a TTF font, as exploited in the wild in September 2010. NOTE: some of these details are obtained from third party information.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Reservation
07/27/2010
Disclosure
09/09/2010
Status
Confirmed
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 4175 | Adobe Acrobat Reader Smart Independent Glyphlets CoolType.dll memory corruption | 119 | Attacked | Official fix | CVE-2010-2883 |