Main Vulnerability Database Exploits ID:1645 - Exploit for Arbitrary code execution in Adobe Acrobat and Adobe Reader - CVE-2010-0188

ID:1645 - Exploit for Arbitrary code execution in Adobe Acrobat and Adobe Reader - CVE-2010-0188

Published: March 18, 2020

Vulnerability identifier: #VU6151

Vulnerability risk: High

CVE-ID: CVE-2010-0188

CWE-ID: CWE-264

Exploitation vector: Remote access

Vulnerable software:
Adobe Acrobat
Adobe Reader

Link to public exploit:

https://www.rapid7.com/db/modules/exploit/windows/fileformat/adobe_libtiff

Vulnerability description

The vulnerability allows a remote attacker to gain elevated privileges on the target system.

The vulnerability exists due to improper permissions control. A remote attacker can gain elevated privileges, cause the target application to crash or even execute arbitrary code.

Successful exploitation of this vulnerability may result in arbitrary code execution.

Remediation

Update Adobe Reader and Adobe Acrobat 8.x to version 8.2.1.
Update Adobe Reader and Adobe Acrobat 9.x to version 9.3.1.

ID:1645 - Exploit for Arbitrary code execution in Adobe Acrobat and Adobe Reader - CVE-2010-0188

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human