CVE-2010-0195
Adobe Acrobat and Reader 9.x < 9.3.2 and 8.x < 8.2.2 - Remote Code Execution via Font Handling
Title source: llmDescription
Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, do not properly handle fonts, which allows attackers to execute arbitrary code via unspecified vectors.
References (5)
Core 5
Core References
Patch, Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/0873
US Government Resource third-party-advisory
x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA10-103C.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/39329
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7420
Patch, Vendor Advisory x_refsource_confirm
http://www.adobe.com/support/security/bulletins/apsb10-09.html
Scores
EPSS
0.0557
EPSS Percentile
91.9%
Details
CWE
CWE-94
Status
published
Products (36)
adobe/acrobat
9.0
adobe/acrobat
9.1
adobe/acrobat
9.1.1
adobe/acrobat
9.1.2
adobe/acrobat
9.1.3
adobe/acrobat
9.2
adobe/acrobat
9.3
adobe/acrobat
9.3.1
adobe/acrobat
8.0
adobe/acrobat
8.1
... and 26 more
Published
Apr 14, 2010
Tracked Since
Feb 18, 2026