CVE-2013-2729

Published: May 16, 2013Modified: Apr 22, 2026CISA KEV

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Integer overflow in Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-2727.

Affected (15)

Products: Adobe: Acrobat, Acrobat Reader · Suse: Linux Enterprise Desktop · Redhat: Enterprise Linux Desktop, Enterprise Linux Eus, Enterprise Linux Server, Enterprise Linux Server Aus, Enterprise Linux Workstation

2 products

1 product

Linux Enterprise Desktop

5 products

Enterprise Linux Desktop

Enterprise Linux Eus

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Workstation

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Adobe Acrobat	From 10.0 to 10.1.7
Adobe Acrobat	From 11.0 to 11.0.03
Adobe Acrobat	From 9.0 to 9.5.5
Adobe Acrobat Reader	From 10.0 to 10.1.7
Adobe Acrobat Reader	From 11.0 to 11.0.03
Adobe Acrobat Reader	From 9.0 to 9.5.5

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Suse Linux Enterprise Desktop	Version 10 sp4
Suse Linux Enterprise Desktop	Version 11 sp2

Configuration C

7 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux Desktop	Version 6.0
Redhat Enterprise Linux Eus	Version 5.9
Redhat Enterprise Linux Eus	Version 6.4
Redhat Enterprise Linux Server	Version 6.0
Redhat Enterprise Linux Server Aus	Version 5.9
Redhat Enterprise Linux Server Aus	Version 6.4
Redhat Enterprise Linux Workstation	Version 6.0

Related CWEs

Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

References (12)

http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00004.html

Source: psirt@adobe.com

Mailing ListThird Party Advisory

http://rhn.redhat.com/errata/RHSA-2013-0826.html

Source: psirt@adobe.com

Third Party Advisory

http://security.gentoo.org/glsa/glsa-201308-03.xml

Source: psirt@adobe.com

Third Party Advisory

http://www.adobe.com/support/security/bulletins/apsb13-15.html

Source: psirt@adobe.com

Not ApplicablePatchVendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16717

Source: psirt@adobe.com

Broken Link

http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00004.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://rhn.redhat.com/errata/RHSA-2013-0826.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://security.gentoo.org/glsa/glsa-201308-03.xml

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.adobe.com/support/security/bulletins/apsb13-15.html

Source: af854a3a-2127-422b-91ae-364da2661108

Not ApplicablePatchVendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16717

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

https://github.com/cisagov/vulnrichment/issues/199

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Issue Tracking

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-2729

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

US Government Resource

Timeline

No history available yet.