1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Adobe Acrobat and Reader Stack-Based Buffer Overflow Vulnerability

Known Exploited Vulnerabilities CVE-2010-2883

Stack-based buffer overflow in CoolType.dll in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PDF document with a long field in a Smart INdependent Glyphlets (SING) table in a TTF font, as exploited in the wild in September 2010. NOTE: some of these details are obtained from third party information.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2010-2883 Adobe Acrobat and Reader Stack-Based Buffer Overflow Vulnerability secondary_impact T1059 Command and Scripting Interpreter
Comments
This vulnerability is exploited by the user opening a malicious pdf file to achieve arbitrary code execution.
References
  1. https://www.exploit-db.com/exploits/16619
CVE-2010-2883 Adobe Acrobat and Reader Stack-Based Buffer Overflow Vulnerability primary_impact T1027 Obfuscated Files or Information
Comments
This vulnerability is exploited by the user opening a malicious pdf file to achieve arbitrary code execution.
References
  1. https://www.exploit-db.com/exploits/16619
CVE-2010-2883 Adobe Acrobat and Reader Stack-Based Buffer Overflow Vulnerability exploitation_technique T1204.002 Malicious File
Comments
This vulnerability is exploited by the user opening a malicious pdf file to achieve arbitrary code execution.
References
  1. https://www.exploit-db.com/exploits/16619