Vulnerability Details : CVE-2014-0563
Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to cause a denial of service (memory corruption) via unspecified vectors.
Vulnerability category: OverflowMemory CorruptionDenial of service
Products affected by CVE-2014-0563
- cpe:2.3:a:adobe:acrobat_reader:10.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:11.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:11.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:11.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:11.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:11.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:11.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:11.0.5:-:*:*:*:windows:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1.10:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:11.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:10.1.11:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat_reader:11.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.0:-:pro:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.0.1:-:pro:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:11.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:11.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:11.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:11.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:11.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:11.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:11.0.5:-:*:*:*:windows:*:*
- cpe:2.3:a:adobe:acrobat:10.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:11.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.1.10:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:10.1.11:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:acrobat:11.0.8:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2014-0563
0.74%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 81 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2014-0563
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
CWE ids for CVE-2014-0563
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2014-0563
-
http://www.securitytracker.com/id/1030853
Adobe Acrobat/Reader Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Conduct Cross-Site Scripting Attacks - SecurityTracker
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/95998
Adobe Acrobat and Adobe Reader code execution CVE-2014-0563 Vulnerability Report
-
http://www.securityfocus.com/bid/69826
Adobe Acrobat and Reader CVE-2014-0563 Unspecified Memory Corruption Vulnerability
-
http://helpx.adobe.com/security/products/reader/apsb14-20.html
Adobe Security BulletinPatch;Vendor Advisory
Jump to