CVE-2011-2102 - OpenCVE

Unspecified vulnerability in Adobe Reader and Acrobat before 10.1 on Windows and Mac OS X allows attackers to bypass intended access restrictions via unknown vectors.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Apple	Mac Os X
Adobe	Acrobat Reader Acrobat
Microsoft	Windows

Configuration 1 [-]

AND

OR	cpe:2.3:a:adobe:acrobat:10.0:::::::*
	cpe:2.3:a:adobe:acrobat:10.0.1:::::::*
	cpe:2.3:a:adobe:acrobat:10.0.2:::::::*
	cpe:2.3:a:adobe:acrobat:10.0.3:::::::*

OR	cpe:2.3:o:apple:mac_os_x::::::::
	cpe:2.3:o:microsoft:windows::::::::

Configuration 2 [-]

AND

OR	cpe:2.3:a:adobe:acrobat_reader:10.0:::::::*
	cpe:2.3:a:adobe:acrobat_reader:10.0.1:::::::*
	cpe:2.3:a:adobe:acrobat_reader:10.0.2:::::::*
	cpe:2.3:a:adobe:acrobat_reader:10.0.3:::::::*

OR	cpe:2.3:o:apple:mac_os_x::::::::
	cpe:2.3:o:microsoft:windows::::::::

References

Link	Resource
http://osvdb.org/73064
http://www.adobe.com/support/security/bulletins/apsb11-16.html	Patch Vendor Advisory
http://www.securityfocus.com/bid/48253
http://www.securitytracker.com/id?1025658
http://www.us-cert.gov/cas/techalerts/TA11-166A.html	US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/68016
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14004

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: adobe

Published: 2011-06-16T23:00:00

Updated: 2017-09-18T12:57:01

Reserved: 2011-05-13T00:00:00

Link: CVE-2011-2102

JSON object: View

NVD Information

Status : Modified

Published: 2011-06-16T23:55:01.870

Modified: 2017-09-19T01:32:53.693

Link: CVE-2011-2102

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-noinfo

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-06-14T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Adobe Reader and Acrobat before 10.1 on Windows and Mac OS X allows attackers to bypass intended access restrictions via unknown vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-18T12:57:01", "orgId": "078d4453-3bcd-4900-85e6-15281da43538", "shortName": "adobe"}, "references": [{"name": "adobe-reader-security-bypass(68016)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68016"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.adobe.com/support/security/bulletins/apsb11-16.html"}, {"name": "TA11-166A", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.us-cert.gov/cas/techalerts/TA11-166A.html"}, {"name": "73064", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/73064"}, {"name": "1025658", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1025658"}, {"name": "48253", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/48253"}, {"name": "oval:org.mitre.oval:def:14004", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14004"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@adobe.com", "ID": "CVE-2011-2102", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in Adobe Reader and Acrobat before 10.1 on Windows and Mac OS X allows attackers to bypass intended access restrictions via unknown vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "adobe-reader-security-bypass(68016)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68016"}, {"name": "http://www.adobe.com/support/security/bulletins/apsb11-16.html", "refsource": "CONFIRM", "url": "http://www.adobe.com/support/security/bulletins/apsb11-16.html"}, {"name": "TA11-166A", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA11-166A.html"}, {"name": "73064", "refsource": "OSVDB", "url": "http://osvdb.org/73064"}, {"name": "1025658", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1025658"}, {"name": "48253", "refsource": "BID", "url": "http://www.securityfocus.com/bid/48253"}, {"name": "oval:org.mitre.oval:def:14004", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14004"}]}}}}, "cveMetadata": {"assignerOrgId": "078d4453-3bcd-4900-85e6-15281da43538", "assignerShortName": "adobe", "cveId": "CVE-2011-2102", "datePublished": "2011-06-16T23:00:00", "dateReserved": "2011-05-13T00:00:00", "dateUpdated": "2017-09-18T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:adobe:acrobat:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "B57C5136-7853-478B-A342-6013528B41B4", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:10.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "CC1E1EE7-379E-4047-962D-0A311EB0DB1A", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:10.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "C113D6BE-88CD-4670-A0FA-8E78EBAF9A81", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:10.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "E4FC7DF0-7006-4805-9CA3-9A950DAA8D51", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*", "matchCriteriaId": "0FF5999A-9D12-4CDD-8DE9-A89C10B2D574", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:adobe:acrobat_reader:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "9731EFE2-A5BE-4389-A92D-DDC573633B6C", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:10.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "F9B4B357-27C7-4926-936C-A100A7AD538B", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:10.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "4DEE3D3B-C94C-4A85-B2C2-E4A72A88F4FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:10.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "978027C8-4DF6-4C18-A31D-1ACFBA857E9F", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*", "matchCriteriaId": "0FF5999A-9D12-4CDD-8DE9-A89C10B2D574", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Adobe Reader and Acrobat before 10.1 on Windows and Mac OS X allows attackers to bypass intended access restrictions via unknown vectors."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Adobe Reader y Acrobat antes de v10.1 en Windows y Mac OS X permite a los atacantes eludir restricciones de acceso previsto a trav\u00e9s de vectores desconocidos."}], "evaluatorImpact": "Per: http://www.adobe.com/support/security/bulletins/apsb11-16.html\r\n\r\n'Note: Update is for Adobe Reader and Acrobat X (10.x) only.'", "id": "CVE-2011-2102", "lastModified": "2017-09-19T01:32:53.693", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2011-06-16T23:55:01.870", "references": [{"source": "psirt@adobe.com", "url": "http://osvdb.org/73064"}, {"source": "psirt@adobe.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.adobe.com/support/security/bulletins/apsb11-16.html"}, {"source": "psirt@adobe.com", "url": "http://www.securityfocus.com/bid/48253"}, {"source": "psirt@adobe.com", "url": "http://www.securitytracker.com/id?1025658"}, {"source": "psirt@adobe.com", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA11-166A.html"}, {"source": "psirt@adobe.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68016"}, {"source": "psirt@adobe.com", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14004"}], "sourceIdentifier": "psirt@adobe.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}