CVE-2010-3625

Adobe Acrobat and Reader 9.x < 9.4 and 8.x < 8.2.5 - Remote Code Execution via Prefix Protocol Handler

Title source: llm
STIX 2.1

Description

Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allow attackers to execute arbitrary code via unspecified vectors, related to a "prefix protocol handler vulnerability."

References (9)

Core 9
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0743.html
Patch, Vendor Advisory x_refsource_confirm
http://www.adobe.com/support/security/bulletins/apsb10-21.html
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA10-279A.html
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0191
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/43025
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201101-08.xml
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6772

Scores

EPSS 0.0777
EPSS Percentile 93.9%

Details

CWE
CWE-94
Status published
Products (49)
adobe/acrobat 8.0
adobe/acrobat 8.1
adobe/acrobat 8.1.1
adobe/acrobat 8.1.2
adobe/acrobat 8.1.3
adobe/acrobat 8.1.4
adobe/acrobat 8.1.5
adobe/acrobat 8.1.6
adobe/acrobat 8.1.7
adobe/acrobat 8.2
... and 39 more
Published Oct 06, 2010
Tracked Since Feb 18, 2026