CVE-2013-0640
HIGH KEVAdobe Reader/Acrobat <9.5.4-10.1.6-11.0.02 - RCE
Title source: llmDescription
Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document, as exploited in the wild in February 2013.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by w3bd3vil & abh1sek · textlocalwindows
https://www.exploit-db.com/exploits/29881
References (12)
Scores
CVSS v3
7.8
EPSS
0.9235
EPSS Percentile
99.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CISA KEV
2022-03-03
VulnCheck KEV
2013-02-13
InTheWild.io
2017-09-19
ENISA EUVD
EUVD-2013-0651
CWE
CWE-787
Status
published
Products (13)
adobe/acrobat
9.0 - 9.5.4
adobe/acrobat_reader
10.0 - 10.1.6
opensuse/opensuse
11.4
opensuse/opensuse
12.1
redhat/enterprise_linux_desktop
6.0
redhat/enterprise_linux_eus
5.9
redhat/enterprise_linux_eus
6.4
redhat/enterprise_linux_server
6.0
redhat/enterprise_linux_server_aus
5.9
redhat/enterprise_linux_server_aus
6.4
... and 3 more
Published
Feb 14, 2013
KEV Added
Mar 03, 2022
Tracked Since
Feb 18, 2026