CVE-2010-2883 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2010-2883 Interim 1 8 2025-11-05T05:57:24Z current 2021-05-30T12:52:48Z 2025-11-05T05:57:24Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2010-2883 Stack-based buffer overflow in CoolType.dll in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PDF document with a long field in a Smart INdependent Glyphlets (SING) table in a TTF font, as exploited in the wild in September 2010. NOTE: some of these details are obtained from third party information. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PGRM2EX4GFPNK4W2MNTXDFIWSDGKG7YG/#PGRM2EX4GFPNK4W2MNTXDFIWSDGKG7YG E-Mail link for SUSE-SA:2010:048 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/D4LZZ3MZO5J623JA5TRPWFTPY7VAGNDI/#D4LZZ3MZO5J623JA5TRPWFTPY7VAGNDI E-Mail link for SUSE-SR:2010:019 https://www.suse.com/support/security/rating/ SUSE Security Ratings Stack-based buffer overflow in CoolType.dll in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PDF document with a long field in a Smart INdependent Glyphlets (SING) table in a TTF font, as exploited in the wild in September 2010. NOTE: some of these details are obtained from third party information. CVE-2010-2883 important 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H