CVE-2011-4372

Published Jan 10, 2012

Last updated 3 years ago

CVSS critical 9.8

Overview

Description: Adobe Reader and Acrobat before 9.5, and 10.x before 10.1.2, on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-4370 and CVE-2011-4373.
Source: psirt@adobe.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-787

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A70868B3-F3C5-4DC0-9013-78E77F424109",
            "versionEndIncluding": "10.1.1"
          },
          {
            "criteria": "cpe:2.3:a:adobe:reader:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA1F1816-CFFC-45BF-A193-35F4A07C2EF7",
            "versionEndIncluding": "10.1.1"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4C56F007-5F8E-4BDD-A803-C907BCC0AF55"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E63E65B1-5E44-4ADD-A692-20877FA22057",
            "versionEndIncluding": "9.4.6"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.4.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "314014C8-527A-4D6D-B9BF-30084178C9B9"
          },
          {
            "criteria": "cpe:2.3:a:adobe:reader:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "45B31326-A27E-42EA-B8D6-FE7165111A55",
            "versionEndIncluding": "9.4.6"
          },
          {
            "criteria": "cpe:2.3:a:adobe:reader:9.4.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1DE8E04-ACEC-4D43-B65C-C74C8020FB50"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "758BD624-4D03-40C9-8F03-F0F9A7A5DE99",
            "versionEndIncluding": "9.4.5"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:9.4.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0335CEAA-ED55-46AA-98D9-693733CDA68C"
          },
          {
            "criteria": "cpe:2.3:a:adobe:reader:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BCAF5003-4BF0-4C1B-A153-9FC76D64CB44",
            "versionEndIncluding": "9.4.5"
          },
          {
            "criteria": "cpe:2.3:a:adobe:reader:9.4.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C2303F4-5AD9-4863-A42B-FBB618AB73DD"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "387021A0-AF36-463C-A605-32EA7DAC172E"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References