Heap-based buffer overflow in Adobe Reader and Acrobat allows remote attackers to execute arbitrary code via a crafted bitmap image.

Heap-based buffer overflow in Adobe Reader and Acrobat allows remote attackers to execute arbitrary code via a crafted bitmap image.

CVE-2011-0596 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The Bitmap parsing component in 2d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via an image with crafted (1) height and (2) width values for an RLE_8 compressed bitmap, which triggers a heap-based buffer overflow, a different vulnerability than CVE-2011-0598, CVE-2011-0599, and CVE-2011-0602.

Learn more about our Web Application Penetration Testing UK.