CVE-2013-0640

Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document, as exploited in the wild in February 2013.

Published: Feb 14, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-0640
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
adobe / acrobat	9.0	9.5.4
adobe / acrobat	10.0	10.1.6
adobe / acrobat	11.0	11.0.02
adobe / acrobat_reader	10.0	10.1.6
adobe / acrobat_reader	11.0	11.0.02
suse / linux_enterprise_desktop	11-sp2	11-sp2.x
opensuse / opensuse	11.4	11.4.x
opensuse / opensuse	12.1	12.1.x
suse / linux_enterprise_desktop	10-sp4	10-sp4.x
redhat / enterprise_linux_server_aus	6.4	6.4.x
redhat / enterprise_linux_desktop	6.0	6.0.x
redhat / enterprise_linux_server	6.0	6.0.x
redhat / enterprise_linux_workstation	6.0	6.0.x
redhat / enterprise_linux_server_aus	5.9	5.9.x
redhat / enterprise_linux_eus	5.9	5.9.x
redhat / enterprise_linux_eus	6.4	6.4.x
adobe / acrobat_reader	9.0	9.5.4

Vulnerability Database

289,599

CVE-2013-0640