CVE-2011-0598 : Integer overflow in ACE.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x

Integer overflow in ACE.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows remote attackers to execute arbitrary code via crafted ICC data, a different vulnerability than CVE-2011-0596, CVE-2011-0599, and CVE-2011-0602.

Published 2011-02-10 18:00:59

Updated 2018-10-30 16:25:17

Source Adobe Systems Incorporated

View at NVD, CVE.org

Vulnerability category: OverflowExecute code

Products affected by CVE-2011-0598

Adobe » Acrobat Reader » Version: 8.0
cpe:2.3:a:adobe:acrobat_reader:8.0:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.1
cpe:2.3:a:adobe:acrobat_reader:8.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.1.2
cpe:2.3:a:adobe:acrobat_reader:8.1.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.1.1
cpe:2.3:a:adobe:acrobat_reader:8.1.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.1.4
cpe:2.3:a:adobe:acrobat_reader:8.1.4:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.1.5
cpe:2.3:a:adobe:acrobat_reader:8.1.5:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.1.1
cpe:2.3:a:adobe:acrobat_reader:9.1.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.1
cpe:2.3:a:adobe:acrobat_reader:9.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.2
cpe:2.3:a:adobe:acrobat_reader:8.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.2.3
cpe:2.3:a:adobe:acrobat_reader:8.2.3:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.2.1
cpe:2.3:a:adobe:acrobat_reader:8.2.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.1.6
cpe:2.3:a:adobe:acrobat_reader:8.1.6:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.1.7
cpe:2.3:a:adobe:acrobat_reader:8.1.7:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.2.4
cpe:2.3:a:adobe:acrobat_reader:8.2.4:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 8.2.2
cpe:2.3:a:adobe:acrobat_reader:8.2.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.1.2
cpe:2.3:a:adobe:acrobat_reader:9.1.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.0
cpe:2.3:a:adobe:acrobat_reader:9.0:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.1.3
cpe:2.3:a:adobe:acrobat_reader:9.1.3:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.3
cpe:2.3:a:adobe:acrobat_reader:9.3:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.2
cpe:2.3:a:adobe:acrobat_reader:9.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.3.1
cpe:2.3:a:adobe:acrobat_reader:9.3.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.3.2
cpe:2.3:a:adobe:acrobat_reader:9.3.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.3.3
cpe:2.3:a:adobe:acrobat_reader:9.3.3:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.3.4
cpe:2.3:a:adobe:acrobat_reader:9.3.4:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.4
cpe:2.3:a:adobe:acrobat_reader:9.4:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 10.0
cpe:2.3:a:adobe:acrobat_reader:10.0:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat Reader » Version: 9.4.1
cpe:2.3:a:adobe:acrobat_reader:9.4.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.1
cpe:2.3:a:adobe:acrobat:8.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.0
cpe:2.3:a:adobe:acrobat:8.0:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.1.1
cpe:2.3:a:adobe:acrobat:8.1.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.1
cpe:2.3:a:adobe:acrobat:9.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.1.4
cpe:2.3:a:adobe:acrobat:8.1.4:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.0
cpe:2.3:a:adobe:acrobat:9.0:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.1.2
cpe:2.3:a:adobe:acrobat:8.1.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.1.3
cpe:2.3:a:adobe:acrobat:8.1.3:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.1.5
cpe:2.3:a:adobe:acrobat:8.1.5:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.2
cpe:2.3:a:adobe:acrobat:8.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.1.6
cpe:2.3:a:adobe:acrobat:8.1.6:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.1.7
cpe:2.3:a:adobe:acrobat:8.1.7:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.2.4
cpe:2.3:a:adobe:acrobat:8.2.4:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.2.3
cpe:2.3:a:adobe:acrobat:8.2.3:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.2.2
cpe:2.3:a:adobe:acrobat:8.2.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 8.2.1
cpe:2.3:a:adobe:acrobat:8.2.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.1.1
cpe:2.3:a:adobe:acrobat:9.1.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.1.2
cpe:2.3:a:adobe:acrobat:9.1.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.1.3
cpe:2.3:a:adobe:acrobat:9.1.3:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.2
cpe:2.3:a:adobe:acrobat:9.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.3
cpe:2.3:a:adobe:acrobat:9.3:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.3.1
cpe:2.3:a:adobe:acrobat:9.3.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.3.2
cpe:2.3:a:adobe:acrobat:9.3.2:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.3.3
cpe:2.3:a:adobe:acrobat:9.3.3:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.3.4
cpe:2.3:a:adobe:acrobat:9.3.4:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.4
cpe:2.3:a:adobe:acrobat:9.4:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 10.0
cpe:2.3:a:adobe:acrobat:10.0:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows
Adobe » Acrobat » Version: 9.4.1
cpe:2.3:a:adobe:acrobat:9.4.1:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X
When used together with: Microsoft » Windows

Exploit prediction scoring system (EPSS) score for CVE-2011-0598

EPSS FAQ

74.55%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 98 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2011-0598

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2011-0598

CWE-189

Assigned by: nvd@nist.gov (Primary)

References for CVE-2011-0598

https://exchange.xforce.ibmcloud.com/vulnerabilities/65302

Adobe Reader and Acrobat ACE.dll buffer overflow CVE-2011-0598 Vulnerability Report
http://www.redhat.com/support/errata/RHSA-2011-0301.html

Support

CVEs referencing this url
http://www.zerodayinitiative.com/advisories/ZDI-11-073/

ZDI-11-073 | Zero Day Initiative
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12081

Repository / Oval Repository
http://www.securityfocus.com/archive/1/516315/100/0/threaded

SecurityFocus
http://www.vupen.com/english/advisories/2011/0492

Webmail | OVH- OVH

CVEs referencing this url
http://www.vupen.com/english/advisories/2011/0337

Webmail | OVH- OVH
Vendor Advisory

CVEs referencing this url
http://www.securityfocus.com/bid/46219

Adobe Acrobat and Reader CVE-2011-0598 Image Parsing Remote Code Execution Vulnerability
http://www.adobe.com/support/security/bulletins/apsb11-03.html

Adobe - Security Bulletins: APSB11-03 - Security updates available for Adobe Reader and Acrobat
Patch;Vendor Advisory

CVEs referencing this url
http://www.securitytracker.com/id?1025033

Adobe Reader and Acrobat Multiple Flaws Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting Attacks and Let Local Users Gain Elevated Privileges - SecurityTracker

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2011-0598

Products affected by CVE-2011-0598

Exploit prediction scoring system (EPSS) score for CVE-2011-0598

CVSS scores for CVE-2011-0598

CWE ids for CVE-2011-0598

References for CVE-2011-0598