CVE-2012-0774 | Vulnerability Database | Aqua Security

Integer overflow in Adobe Reader and Acrobat 9.x before 9.5.1 and 10.x before 10.1.3 allows attackers to execute arbitrary code via a crafted TrueType font.

Affected Software

Name	Vendor	Start Version	End Version
Acrobat_reader	Adobe	9.4.3	9.4.3
Acrobat_reader	Adobe	9.2	9.2
Acrobat_reader	Adobe	9.1	9.1
Acrobat_reader	Adobe	9.4.6	9.4.6
Acrobat_reader	Adobe	9.1.3	9.1.3
Acrobat_reader	Adobe	9.1.2	9.1.2
Acrobat_reader	Adobe	9.3.3	9.3.3
Acrobat_reader	Adobe	9.4.2	9.4.2
Acrobat_reader	Adobe	9.1.1	9.1.1
Acrobat_reader	Adobe	9.4.5	9.4.5
Acrobat_reader	Adobe	9.3.4	9.3.4
Acrobat_reader	Adobe	9.3	9.3
Acrobat_reader	Adobe	9.0	9.0
Acrobat_reader	Adobe	9.4	9.4
Acrobat_reader	Adobe	9.3.2	9.3.2
Acrobat_reader	Adobe	9.5	9.5
Acrobat_reader	Adobe	9.4.7	9.4.7
Acrobat_reader	Adobe	9.4.4	9.4.4
Acrobat_reader	Adobe	9.3.1	9.3.1
Acrobat_reader	Adobe	9.4.1	9.4.1

References

http://www.adobe.com/support/security/bulletins/apsb12-08.html
http://www.securitytracker.com/id?1026908
http://www.securityfocus.com/bid/52951
http://secunia.com/advisories/48756
http://www.us-cert.gov/cas/techalerts/TA12-101B.html
http://secunia.com/advisories/48846
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14860
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00017.html
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00016.html
http://rhn.redhat.com/errata/RHSA-2012-0469.html
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00013.html

NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-0774
CWE	https://cwe.mitre.org/data/definitions/189.html