CVE-2013-2729

Integer overflow in Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allows attackers to execute arbitrary...

Basic Information

CVE State: PUBLISHED
Reserved Date: March 28, 2013
Published Date: May 16, 2013
Last Updated: February 04, 2025
Vendor: Adobe
Product: Reader and Acrobat
Description: Integer overflow in Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-2727.
Tags

CVSS Scores

CVSS v3.1

9.8 - CRITICAL

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2.0

10.0

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

SSVC Information

Exploitation: active
Automatable: Yes
Technical Impact: total

Exploit Status

Exploited in the Wild: Yes (2022-03-28 00:00:00 UTC) Source
Proof of Concept Available: Yes (added 2013-05-15 04:12:13 UTC) Source

References

http://www.adobe.com/support/security/bulletins/apsb13-15.html http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00004.html http://rhn.redhat.com/errata/RHSA-2013-0826.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16717 http://security.gentoo.org/glsa/glsa-201308-03.xml

Known Exploited Vulnerability Information

Source	Added Date
CISA	2022-03-28 00:00:00 UTC

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

feliam/CVE-2013-2729

Type: github • Created: 2013-05-15 04:12:13 UTC • Stars: 24

Timeline

CVE ID Reserved

March 28, 2013
Proof of Concept Exploit Available

May 15, 2013
CVE Published to Public

May 16, 2013
Added to KEVIntel

March 28, 2022