RETIRED: Adobe Acrobat and Reader April 2010 Multiple Remote Vulnerabilities

Adobe released an advisory addressing multiple issues in Reader and Acrobat.

Attackers can exploit these issues to steal cookie-based authentication credentials, cause a denial-of-service, or execute arbitrary code in the context of the user running an affected application.

NOTE: This BID is being retired; the following individual records have been created to document these vulnerabilities:

39515 Adobe Acrobat and Reader CVE-2010-0190 Cross Site Scripting Vulnerability
39517 Adobe Acrobat and Reader Prefix Protocol Handler Remote Code Execution Vulnerability
39523 Adobe Acrobat and Reader CVE-2010-0192 Denial of Service Vulnerability
39524 Adobe Acrobat and Reader CVE-2010-0193 Denial of Service Vulnerability
39521 Adobe Acrobat and Reader CVE-2010-0196 Denial of Service Vulnerability
39518 Adobe Acrobat and Reader CVE-2010-0197 Remote Code Execution Vulnerability
39505 Adobe Acrobat and Reader PNG Data Remote Buffer Overflow Vulnerability
39511 Adobe Acrobat and Reader JPEG Data Remote Buffer Overflow Vulnerability
39520 Adobe Acrobat and Reader CVE-2010-0201 Remote Code Execution Vulnerability
39514 Adobe Acrobat and Reader GIF Data Remote Buffer Overflow Vulnerability
39507 Adobe Acrobat and Reader BMP Data Remote Buffer Overflow Vulnerability
39522 Adobe Acrobat and Reader CVE-2010-0204 Remote Code Execution Vulnerability
39470 Adobe Acrobat and Reader CVE-2010-1241 'CoolType.dll' Remote Code Execution Vulnerability
39469 Adobe Acrobat and Reader CVE-2010-0194 X3D Component Remote Code Execution Vulnerability
39417 Adobe Acrobat and Reader CVE-2010-0195 Embedded Font Handling Remote Code Execution Vulnerability


 

Privacy Statement
Copyright 2010, SecurityFocus