CVE-2010-1278

high

Description

Buffer overflow in the Atlcom.get_atlcom ActiveX control in gp.ocx in Adobe Download Manager, as used in Adobe Reader and Acrobat 8.x before 8.2 and 9.x before 9.3, allows remote attackers to execute arbitrary code via unspecified parameters.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7500

http://www.zerodayinitiative.com/advisories/ZDI-10-077/

http://www.securitytracker.com/id?1023908

http://www.securityfocus.com/archive/1/510868/100/0/threaded

http://www.adobe.com/support/security/bulletins/apsb10-02.html

Details

Source: Mitre, NVD

Published: 2010-04-22

Updated: 2018-10-10

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H