What is the severity of CVE-2011-2436?

CVE-2011-2436 is rated as critical due to potential arbitrary code execution by attackers.

How do I fix CVE-2011-2436?

To mitigate CVE-2011-2436, update Adobe Reader and Acrobat to version 8.3.1 or later for 8.x, 9.4.6 or later for 9.x, and 10.1.1 or later for 10.x.

What types of attacks can exploit CVE-2011-2436?

Attackers can exploit CVE-2011-2436 to execute arbitrary code through specially crafted images.

Is it possible to detect an exploit of CVE-2011-2436?

Detection of an exploit for CVE-2011-2436 requires monitoring for unusual activity and signatures associated with malicious image payloads.

Vulnerability/
CVE-2011-2436

critical

9.3

CWE

119

15/9/2011

6/8/2024

CVE-2011-2436: Buffer Overflow

First published: Thu Sep 15 2011(Updated: )

Heap-based buffer overflow in the image-parsing library in Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x before 10.1.1 allows attackers to execute arbitrary code via unspecified vectors.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe Acrobat Reader Notification Manager	=8.1.6
Adobe Acrobat Reader Notification Manager	=10.0
Adobe Acrobat Reader Notification Manager	=8.2.3
Adobe Acrobat Reader Notification Manager	=9.4.3
Adobe Acrobat Reader Notification Manager	=8.2.6
Adobe Acrobat Reader Notification Manager	=8.2
Adobe Acrobat Reader Notification Manager	=10.0.3
Adobe Acrobat Reader Notification Manager	=9.2
Adobe Acrobat Reader Notification Manager	=8.2.2
Adobe Acrobat Reader Notification Manager	=9.1
Adobe Acrobat Reader Notification Manager	=8.2.4
Adobe Acrobat Reader Notification Manager	=9.1.3
Adobe Acrobat Reader Notification Manager	=8.0
Adobe Acrobat Reader Notification Manager	=9.1.2
Adobe Acrobat Reader Notification Manager	=8.1.5
Adobe Acrobat Reader Notification Manager	=9.3.3
Adobe Acrobat Reader Notification Manager	=9.4.2
Adobe Acrobat Reader Notification Manager	=9.1.1
Adobe Acrobat Reader Notification Manager	=8.2.1
Adobe Acrobat Reader Notification Manager	=8.3
Adobe Acrobat Reader Notification Manager	=8.1.7
Adobe Acrobat Reader Notification Manager	=8.1.4
Adobe Acrobat Reader Notification Manager	=9.3.4
Adobe Acrobat Reader Notification Manager	=8.1.2
Adobe Acrobat Reader Notification Manager	=9.3
Adobe Acrobat Reader Notification Manager	=9.0
Adobe Acrobat Reader Notification Manager	=9.4
Adobe Acrobat Reader Notification Manager	=8.1.1
Adobe Acrobat Reader Notification Manager	=9.3.2
Adobe Acrobat Reader Notification Manager	=8.1
Adobe Acrobat Reader Notification Manager	=10.0.1
Adobe Acrobat Reader Notification Manager	=8.1.3
Adobe Acrobat Reader Notification Manager	=9.4.4
Adobe Acrobat Reader Notification Manager	=9.3.1
Adobe Acrobat Reader Notification Manager	=10.0.2
Adobe Acrobat Reader Notification Manager	=9.4.1
Adobe Acrobat Reader	=8.0
Adobe Acrobat Reader	=8.1.7
Adobe Acrobat Reader	=8.2.1
Adobe Acrobat Reader	=9.3.3
Adobe Acrobat Reader	=10.1
Adobe Acrobat Reader	=8.1.2
Adobe Acrobat Reader	=9.4.2
Adobe Acrobat Reader	=9.2
Adobe Acrobat Reader	=9.1
Adobe Acrobat Reader	=10.0
Adobe Acrobat Reader	=9.4.3
Adobe Acrobat Reader	=8.2.4
Adobe Acrobat Reader	=8.1.1
Adobe Acrobat Reader	=10.0.3
Adobe Acrobat Reader	=9.4.4
Adobe Acrobat Reader	=8.2.3
Adobe Acrobat Reader	=8.2
Adobe Acrobat Reader	=8.1
Adobe Acrobat Reader	=9.0
Adobe Acrobat Reader	=9.3.4
Adobe Acrobat Reader	=8.2.2
Adobe Acrobat Reader	=9.4.1
Adobe Acrobat Reader	=9.3.2
Adobe Acrobat Reader	=9.1.1
Adobe Acrobat Reader	=8.1.5
Adobe Acrobat Reader	=8.1.4
Adobe Acrobat Reader	=9.3.1
Adobe Acrobat Reader	=8.2.6
Adobe Acrobat Reader	=9.1.2
Adobe Acrobat Reader	=10.0.2
Adobe Acrobat Reader	=8.1.6
Adobe Acrobat Reader	=10.0.1
Adobe Acrobat Reader	=9.1.3
Adobe Acrobat Reader	=9.4.5
Adobe Acrobat Reader	=8.2.5
Adobe Acrobat Reader	=8.1.3
Adobe Acrobat Reader	=9.4
Adobe Acrobat Reader	=9.3

Remedy

http://www.adobe.com/support/security/bulletins/apsb11-24.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-2436?
CVE-2011-2436 is rated as critical due to potential arbitrary code execution by attackers.
How do I fix CVE-2011-2436?
To mitigate CVE-2011-2436, update Adobe Reader and Acrobat to version 8.3.1 or later for 8.x, 9.4.6 or later for 9.x, and 10.1.1 or later for 10.x.
Which versions of Adobe Reader are affected by CVE-2011-2436?
CVE-2011-2436 affects Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x before 10.1.1.
What types of attacks can exploit CVE-2011-2436?
Attackers can exploit CVE-2011-2436 to execute arbitrary code through specially crafted images.
Is it possible to detect an exploit of CVE-2011-2436?
Detection of an exploit for CVE-2011-2436 requires monitoring for unusual activity and signatures associated with malicious image payloads.

agent/type
agent/severity
agent/weakness
agent/references
agent/remedy
agent/author
agent/softwarecombine
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/adobe
canonical/adobe acrobat reader notification manager
version/adobe acrobat reader notification manager/8.1.6
version/adobe acrobat reader notification manager/10.0
version/adobe acrobat reader notification manager/8.2.3
version/adobe acrobat reader notification manager/9.4.3
version/adobe acrobat reader notification manager/8.2.6
version/adobe acrobat reader notification manager/8.2
version/adobe acrobat reader notification manager/10.0.3
version/adobe acrobat reader notification manager/9.2
version/adobe acrobat reader notification manager/8.2.2
version/adobe acrobat reader notification manager/9.1
version/adobe acrobat reader notification manager/8.2.4
version/adobe acrobat reader notification manager/9.1.3
version/adobe acrobat reader notification manager/8.0
version/adobe acrobat reader notification manager/9.1.2
version/adobe acrobat reader notification manager/8.1.5
version/adobe acrobat reader notification manager/9.3.3
version/adobe acrobat reader notification manager/9.4.2
version/adobe acrobat reader notification manager/9.1.1
version/adobe acrobat reader notification manager/8.2.1
version/adobe acrobat reader notification manager/8.3
version/adobe acrobat reader notification manager/8.1.7
version/adobe acrobat reader notification manager/8.1.4
version/adobe acrobat reader notification manager/9.3.4
version/adobe acrobat reader notification manager/8.1.2
version/adobe acrobat reader notification manager/9.3
version/adobe acrobat reader notification manager/9.0
version/adobe acrobat reader notification manager/9.4
version/adobe acrobat reader notification manager/8.1.1
version/adobe acrobat reader notification manager/9.3.2
version/adobe acrobat reader notification manager/8.1
version/adobe acrobat reader notification manager/10.0.1
version/adobe acrobat reader notification manager/8.1.3
version/adobe acrobat reader notification manager/9.4.4
version/adobe acrobat reader notification manager/9.3.1
version/adobe acrobat reader notification manager/10.0.2
version/adobe acrobat reader notification manager/9.4.1
canonical/adobe acrobat reader
version/adobe acrobat reader/8.0
version/adobe acrobat reader/8.1.7
version/adobe acrobat reader/8.2.1
version/adobe acrobat reader/9.3.3
version/adobe acrobat reader/10.1
version/adobe acrobat reader/8.1.2
version/adobe acrobat reader/9.4.2
version/adobe acrobat reader/9.2
version/adobe acrobat reader/9.1
version/adobe acrobat reader/10.0
version/adobe acrobat reader/9.4.3
version/adobe acrobat reader/8.2.4
version/adobe acrobat reader/8.1.1
version/adobe acrobat reader/10.0.3
version/adobe acrobat reader/9.4.4
version/adobe acrobat reader/8.2.3
version/adobe acrobat reader/8.2
version/adobe acrobat reader/8.1
version/adobe acrobat reader/9.0
version/adobe acrobat reader/9.3.4
version/adobe acrobat reader/8.2.2
version/adobe acrobat reader/9.4.1
version/adobe acrobat reader/9.3.2
version/adobe acrobat reader/9.1.1
version/adobe acrobat reader/8.1.5
version/adobe acrobat reader/8.1.4
version/adobe acrobat reader/9.3.1
version/adobe acrobat reader/8.2.6
version/adobe acrobat reader/9.1.2
version/adobe acrobat reader/10.0.2
version/adobe acrobat reader/8.1.6
version/adobe acrobat reader/10.0.1
version/adobe acrobat reader/9.1.3
version/adobe acrobat reader/9.4.5
version/adobe acrobat reader/8.2.5
version/adobe acrobat reader/8.1.3
version/adobe acrobat reader/9.4
version/adobe acrobat reader/9.3

CVE-2011-2436: Buffer Overflow

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-2436?

How do I fix CVE-2011-2436?

Which versions of Adobe Reader are affected by CVE-2011-2436?

What types of attacks can exploit CVE-2011-2436?

Is it possible to detect an exploit of CVE-2011-2436?

Company

Resources

Contact