CVE-2010-1278

high

Description

Buffer overflow in the Atlcom.get_atlcom ActiveX control in gp.ocx in Adobe Download Manager, as used in Adobe Reader and Acrobat 8.x before 8.2 and 9.x before 9.3, allows remote attackers to execute arbitrary code via unspecified parameters.

References

http://www.adobe.com/support/security/bulletins/apsb10-02.html

http://www.securityfocus.com/archive/1/510868/100/0/threaded

http://www.securitytracker.com/id?1023908

http://www.zerodayinitiative.com/advisories/ZDI-10-077/

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7500

Details

Source: MITRE

Published: 2010-04-22

Updated: 2018-10-10

Type: CWE-119

Risk Information

CVSS v2

Base Score: 9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 8.6

Severity: HIGH