CVE-2013-2730

Adobe Reader/Acrobat <9.5.5, <10.1.7, <11.0.03 - Buffer Overflow

Title source: llm

Description

Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-2733.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubylocalwindows

https://www.exploit-db.com/exploits/25725

View Code ZIP pw:eip

nomisec WORKING POC 10 stars

by feliam · poc

https://github.com/feliam/CVE-2013-2730

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by Felipe Andres Manzano, juan vazquez · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/adobe_sandbox_adobecollabsync.rb

View Code ZIP pw:eip

References (6)

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-0826.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00004.html

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-201308-03.xml

[Patch, Vendor Advisory] http://www.adobe.com/support/security/bulletins/apsb13-15.html

[Exploit] http://www.securityfocus.com/bid/59923

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16631

Scores

EPSS 0.7957

EPSS Percentile 99.1%

Details

CWE

CWE-119

Status published

Products (33)

adobe/acrobat 10.0 (2 CPE variants)

adobe/acrobat 10.0.1 (2 CPE variants)

adobe/acrobat 10.0.2

adobe/acrobat 10.0.3

adobe/acrobat 10.1

adobe/acrobat 10.1.1

adobe/acrobat 10.1.2

adobe/acrobat 10.1.3

adobe/acrobat 10.1.4

adobe/acrobat 10.1.5

... and 23 more

Published May 16, 2013

Tracked Since Feb 18, 2026