CVE-2010-2888

Adobe Reader/Acrobat <8.2.5, <9.4 - RCE

Title source: llm
STIX 2.1

Description

Multiple unspecified vulnerabilities in an ActiveX control in Adobe Reader and Acrobat 8.x before 8.2.5 and 9.x before 9.4 on Windows allow attackers to execute arbitrary code via unknown vectors.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7348
Patch, Vendor Advisory x_refsource_confirm
http://www.adobe.com/support/security/bulletins/apsb10-21.html
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA10-279A.html

Scores

EPSS 0.0611
EPSS Percentile 92.6%

Details

CWE
CWE-20
Status published
Products (49)
adobe/acrobat 8.0
adobe/acrobat 8.1
adobe/acrobat 8.1.1
adobe/acrobat 8.1.2
adobe/acrobat 8.1.3
adobe/acrobat 8.1.4
adobe/acrobat 8.1.5
adobe/acrobat 8.1.6
adobe/acrobat 8.1.7
adobe/acrobat 8.2
... and 39 more
Published Oct 06, 2010
Tracked Since Feb 18, 2026