CVE-2014-9158
critical
CVSS v3
—
CVSS v2
10.0
VIR risk
10.0
Description
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8456, CVE-2014-8458, CVE-2014-8459, and CVE-2014-8461.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: psirt@adobe.com — http://helpx.adobe.com/security/products/reader/apsb14-28.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| macos | affected | |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| adobe | acrobat | 10.0 | |
| adobe | acrobat | 10.0.1 | |
| adobe | acrobat | 10.0.2 | |
| adobe | acrobat | 10.0.3 | |
| adobe | acrobat | 10.1 | |
| adobe | acrobat | 10.1.1 | |
| adobe | acrobat | 10.1.2 | |
| adobe | acrobat | 10.1.3 | |
| adobe | acrobat | 10.1.4 | |
| adobe | acrobat | 10.1.5 | |
| adobe | acrobat | 10.1.6 | |
| adobe | acrobat | 10.1.7 | |
| adobe | acrobat | 10.1.8 | |
| adobe | acrobat | 10.1.9 | |
| adobe | acrobat | 10.1.10 | |
| adobe | acrobat | 10.1.11 | |
| adobe | acrobat | 10.1.12 | |
| adobe | acrobat | 11.0 | |
| adobe | acrobat | 11.0.1 | |
| adobe | acrobat | 11.0.2 | |
| adobe | acrobat | 11.0.3 | |
| adobe | acrobat | 11.0.4 | |
| adobe | acrobat | 11.0.5 | |
| adobe | acrobat | 11.0.6 | |
| adobe | acrobat | 11.0.7 | |
| adobe | acrobat | 11.0.8 | |
| adobe | acrobat | 11.0.9 | |
| adobe | acrobat_reader | 10.0 | |
| adobe | acrobat_reader | 10.0.1 | |
| adobe | acrobat_reader | 10.0.2 | |
| adobe | acrobat_reader | 10.0.3 | |
| adobe | acrobat_reader | 10.1 | |
| adobe | acrobat_reader | 10.1.1 | |
| adobe | acrobat_reader | 10.1.2 | |
| adobe | acrobat_reader | 10.1.3 | |
| adobe | acrobat_reader | 10.1.4 | |
| adobe | acrobat_reader | 10.1.5 | |
| adobe | acrobat_reader | 10.1.6 | |
| adobe | acrobat_reader | 10.1.7 | |
| adobe | acrobat_reader | 10.1.8 | |
| adobe | acrobat_reader | 10.1.9 | |
| adobe | acrobat_reader | 10.1.10 | |
| adobe | acrobat_reader | 10.1.11 | |
| adobe | acrobat_reader | 10.1.12 | |
| adobe | acrobat_reader | 11.0.0 | |
| adobe | acrobat_reader | 11.0.01 | |
| adobe | acrobat_reader | 11.0.02 | |
| adobe | acrobat_reader | 11.0.03 | |
| adobe | acrobat_reader | 11.0.04 | |
| adobe | acrobat_reader | 11.0.05 | |
| adobe | acrobat_reader | 11.0.06 | |
| adobe | acrobat_reader | 11.0.07 | |
| adobe | acrobat_reader | 11.0.08 | |
| adobe | acrobat_reader | 11.0.09 | |
References
CWEs
CWE-94
Verify integrity in audit chain (admin only). AS-IS.