CVE-2014-0513

critical

Published 2014-05-14 · Modified 2026-05-06

CVSS v3

—

CVSS v2

10.0

VIR risk

10.0

Description

Stack-based buffer overflow in Adobe Illustrator CS6 before 16.0.5 and 16.2.x before 16.2.2 allows remote attackers to execute arbitrary code via unspecified vectors.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: psirt@adobe.com — http://helpx.adobe.com/security/products/illustrator/apsb14-11.html

Application impact

Vendor	Product	Versions
adobe	illustrator	`{"endIncluding":"16.0.4"}`
adobe	illustrator	`16.0.1`
adobe	illustrator	`16.0.2`
adobe	illustrator	`16.0.3`
adobe	illustrator	`16.2.0`
adobe	illustrator	`16.2.1`

References

http://helpx.adobe.com/security/products/illustrator/apsb14-11.html
http://helpx.adobe.com/security/products/illustrator/apsb14-11.html

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.