VIR Vulnerability Intelligence Relay

CVE-2012-0776

critical
Published 2012-04-10 · Modified 2026-04-29
CVSS v3
CVSS v2
10.0
VIR risk
10.0

Description

The installer in Adobe Reader 9.x before 9.5.1 and 10.x before 10.1.3 allows attackers to bypass intended access restrictions and execute arbitrary code via unspecified vectors.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: psirt@adobe.com — http://www.adobe.com/support/security/bulletins/apsb12-08.html

Application impact
VendorProductVersionsFixed
adobeacrobat_reader9.0
adobeacrobat_reader9.1
adobeacrobat_reader9.1.1
adobeacrobat_reader9.1.2
adobeacrobat_reader9.1.3
adobeacrobat_reader9.2
adobeacrobat_reader9.3
adobeacrobat_reader9.3.1
adobeacrobat_reader9.3.2
adobeacrobat_reader9.3.3
adobeacrobat_reader9.3.4
adobeacrobat_reader9.4
adobeacrobat_reader9.4.1
adobeacrobat_reader9.4.2
adobeacrobat_reader9.4.3
adobeacrobat_reader9.4.4
adobeacrobat_reader9.4.5
adobeacrobat_reader9.4.6
adobeacrobat_reader9.4.7
adobeacrobat_reader9.5
adobeacrobat9.0
adobeacrobat9.1
adobeacrobat9.1.1
adobeacrobat9.1.2
adobeacrobat9.1.3
adobeacrobat9.2
adobeacrobat9.3
adobeacrobat9.3.1
adobeacrobat9.3.2
adobeacrobat9.3.3
adobeacrobat9.3.4
adobeacrobat9.4
adobeacrobat9.4.1
adobeacrobat9.4.2
adobeacrobat9.4.3
adobeacrobat9.4.4
adobeacrobat9.4.5
adobeacrobat9.4.6
adobeacrobat9.4.7
adobeacrobat9.5
adobeacrobat10.0
adobeacrobat10.0.1
adobeacrobat10.0.2
adobeacrobat10.0.3
adobeacrobat10.1
adobeacrobat10.1.1
adobeacrobat10.1.2

References

CWEs

CWE-264

Verify integrity in audit chain (admin only). AS-IS.