CVE-2010-3631

Adobe Acrobat and Reader 8.x-8.2.4 and 9.x-9.3 - Remote Code Execution

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-3631. PoCs published by Knud & nSense.

AI-analyzed exploit summary This advisory describes a remote code execution vulnerability in Adobe Reader 9.3.4 for Macintosh via a buffer overflow in the handling of the 'acrobat://' URI scheme. The PoC demonstrates memory corruption by writing a null byte to an arbitrary location, potentially allowing arbitrary code execution.

Description

Array index error in Adobe Reader and Acrobat 8.x before 8.2.5 and 9.x before 9.4 on Mac OS X allows attackers to execute arbitrary code via unspecified vectors.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Knud & nSense · textdososx
https://www.exploit-db.com/exploits/15212

This advisory describes a remote code execution vulnerability in Adobe Reader 9.3.4 for Macintosh via a buffer overflow in the handling of the 'acrobat://' URI scheme. The PoC demonstrates memory corruption by writing a null byte to an arbitrary location, potentially allowing arbitrary code execution.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Adobe Reader 9.3.4 for Macintosh
No auth needed
Prerequisites: User interaction to open a malicious 'acrobat://' URI
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Patch, Vendor Advisory x_refsource_confirm
http://www.adobe.com/support/security/bulletins/apsb10-21.html
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA10-279A.html
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14195

Scores

EPSS 0.1190
EPSS Percentile 95.6%

Details

CWE
CWE-20
Status published
Products (49)
adobe/acrobat 8.0
adobe/acrobat 8.1
adobe/acrobat 8.1.1
adobe/acrobat 8.1.2
adobe/acrobat 8.1.3
adobe/acrobat 8.1.4
adobe/acrobat 8.1.5
adobe/acrobat 8.1.6
adobe/acrobat 8.1.7
adobe/acrobat 8.2
... and 39 more
Published Oct 06, 2010
Tracked Since Feb 18, 2026