Back to search
CVE-2010-2883
Published: Sep 9, 2010
Modified: Oct 22, 2025
PUBLISHED
Description
Stack-based buffer overflow in CoolType.dll in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PDF document with a long field in a Smart INdependent Glyphlets (SING) table in a TTF font, as exploited in the wild in September 2010. NOTE: some of these details are obtained from third party information.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SUSE-SA:2010:048
vendor-advisory
x_refsource_SUSE
ADV-2011-0191
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:11586
vdb-entry
signature
x_refsource_OVAL
http://www.adobe.com/support/security/advisories/apsa10-02.html
x_refsource_CONFIRM
43025
third-party-advisory
x_refsource_SECUNIA
ADV-2011-0344
vdb-entry
x_refsource_VUPEN
GLSA-201101-08
vendor-advisory
x_refsource_GENTOO
ADV-2010-2331
vdb-entry
x_refsource_VUPEN
VU#491991
third-party-advisory
x_refsource_CERT-VN
RHSA-2010:0743
vendor-advisory
x_refsource_REDHAT
http://www.adobe.com/support/security/bulletins/apsb10-21.html
x_refsource_CONFIRM
TA10-279A
third-party-advisory
x_refsource_CERT
41340
third-party-advisory
x_refsource_SECUNIA
adobe-reader-cooltype-code-execution(61635)
vdb-entry
x_refsource_XF
43057
vdb-entry
x_refsource_BID
TLSA-2011-2
vendor-advisory
x_refsource_TURBO
SUSE-SR:2010:019
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now