CVE-2010-3654 — Vulnetix

CVE-2010-3654 CLOSED

Une vulnérabilité permettant l'exécution de code arbitraire à distance affecte des produits Adobe. L'éditeur a émis les correctifs pour les lecteurs PDF.

EPSS 93.56% · 99.8th percentile

Risk Scores

EPSS Score

93.56%

99.8th percentile

Affected Products

Vendor	Product	Versions
Adobe	Acrobat

Exploit Intelligence

FILE-PDF attempted download of a PDF with embedded Flash [disabled] (vulnetix)
FILE-PDF attempted download of a PDF with embedded Flash [disabled] (vulnetix)
FILE-PDF attempted download of a PDF with embedded Flash [disabled] (vulnetix)
FILE-PDF attempted download of a PDF with embedded Flash [disabled] (vulnetix)
FILE-PDF attempted download of a PDF with embedded Flash [disabled] (vulnetix)
FILE-PDF attempted download of a PDF with embedded Flash [disabled] (vulnetix)
http://contagiodump.blogspot.com/2010/10/potential-new-adobe-flash-player-zero.html (nist-nvd)
sample exploit of buffer overflow in libpng (github-poc)
sample exploit of buffer overflow in libpng (github-poc)
sample exploit of buffer overflow in libpng (github-poc)

…and 108 more exploits

Timeline

CVE Published
Jul 15, 2011 PoC Published
Jan 1, 2012 VulnCheck KEV Exploitation
Nov 16, 2012 VulnCheck KEV Exploitation
Mar 21, 2013 VulnCheck KEV Exploitation
Sep 23, 2014 PoC Published
Oct 22, 2014 VulnCheck KEV Exploitation
May 29, 2018 PoC Published
Jul 2, 2021 PoC Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score

References

https://cert.ssi.gouv.fr/alerte/CERTA-2010-ALE-018/ advisory
https://cert.ssi.gouv.fr/alerte/CERTA-2010-ALE-020/ advisory
http://support.apple.com/kb/HT4435 advisory
https://cert.ssi.gouv.fr/avis/CERTA-2010-AVI-538/ advisory
http://www.adobe.com/support/security/bulletins/apsb10-26.html advisory
https://cert.ssi.gouv.fr/avis/CERTA-2010-AVI-548/ advisory
https://cert.ssi.gouv.fr/avis/CERTA-2010-AVI-551/ advisory
http://www.adobe.com/support/security/bulletins/apsb10-28.html advisory

Open in Interactive Console →