← Back

CVE-2011-4372

nvd nist
Published: Jan 10, 2012Modified: Apr 29, 2026

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

Adobe Reader and Acrobat before 9.5, and 10.x before 10.1.2, on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-4370 and CVE-2011-4373.

Affected (10)

Products: Adobe: Acrobat, Reader
Adobe
2 products
Acrobat
Reader
Configuration A
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Acrobat
Up to 10.1.1
Reader
Up to 10.1.1
Running on/withPlatform Versions
Apple
Macos
All versions
Configuration B
4 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Adobe
Acrobat
Up to 9.4.6
Acrobat
Version 9.4.7
Adobe
Reader
Up to 9.4.6
Reader
Version 9.4.7
Running on/withPlatform Versions
Microsoft
Windows
All versions
Configuration C
4 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Adobe
Acrobat
Up to 9.4.5
Acrobat
Version 9.4.6
Adobe
Reader
Up to 9.4.5
Reader
Version 9.4.6
Running on/withPlatform Versions
Apple
Macos
All versions

Related CWEs

CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

References (8)

Source: psirt@adobe.com
PatchVendor Advisory
Source: psirt@adobe.com
Broken LinkVDB Entry
Source: psirt@adobe.com
Broken LinkVDB Entry
Source: psirt@adobe.com
Tool Signature
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Tool Signature

Timeline

No history available yet.