Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-2549

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2013-2549
Last Modified 02 Nov 2013 11:32:14
Published 11 Mar 2013 06:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2013-2549

Summary

Unspecified vulnerability in Adobe Reader 11.0.02 allows remote attackers to execute arbitrary code via vectors related to a "break into the sandbox," as demonstrated by George Hotz during a Pwn2Own competition at CanSecWest 2013.

Vulnerable Systems

Application

  • Adobe Acrobat Reader 11.0.02


References

MISC - http://twitter.com/thezdi/statuses/309771882612281344

MISC - http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Pwn2Own-2013/ba-p/5981157

CONFIRM - http://www.adobe.com/support/security/bulletins/apsb13-15.html

REDHAT - RHSA-2013:0826

SUSE - SUSE-SU-2013:0809

GENTOO - GLSA-201308-03

Related Patches

Adobe APSB13-15 Reader XI 11.0.3 for Windows (Update) (All Languages) (See Note) (Rev 2)

Adobe APSB13-15 Acrobat XI 11.0.3 for Windows (Update) (All Languages) (See Notes)

Adobe APSB13-15 Reader XI (MUI) 11.0.3 for Windows (Update) (See Note) (Rev 2)

Adobe APSB13-15 Reader X (MUI) 10.1.7 for Windows (Update) (Rev 2)

Adobe APSB13-15 Reader X 10.1.7 for Windows (Update) (All Languages) (See Note) (Rev 3)

Adobe APSB13-15 Reader 9.5.5 for Windows (Update) (All Languages) (See Note) (Rev 2)

Adobe APSB13-15 Acrobat 9.5.5 for Windows (Update) (All Languages) (See Notes) (Rev 2)

Adobe APSB13-15 Reader 9.5.5 Security Update for Mac OS X (Intel)

Adobe APSB13-15 Acrobat X 10.1.7 for Windows (Update) (All Languages) (See Notes) (Rev 3)

Novell SUSE 2013:7734 acroread security update for SLED 11 SP2 i586

Novell SUSE 2013:7734 acroread security update for SLED 11 SP2 x86_64

Novell SUSE 2013:8571 acroread security update for SLED 10 SP4 i586

Novell SUSE 2013:8571 acroread security update for SLED 10 SP4 x86_64


Last Updated: 27 May 2016 10:47:24