What is the severity of CVE-2013-3338?

CVE-2013-3338 has been classified with a high severity, as it allows attackers to execute arbitrary code or cause a denial of service.

How do I fix CVE-2013-3338?

To fix CVE-2013-3338, you should update Adobe Reader and Acrobat to version 9.5.5, 10.1.7, or 11.0.3 or later.

Which versions of Adobe Reader are affected by CVE-2013-3338?

Adobe Reader versions prior to 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.3 are vulnerable to CVE-2013-3338.

What types of attacks can exploit CVE-2013-3338?

CVE-2013-3338 can be exploited to execute arbitrary code or cause memory corruption leading to denial of service.

Is there a workaround for CVE-2013-3338 if I cannot update immediately?

Currently, the best mitigation for CVE-2013-3338 is to limit use of affected versions until they can be updated.

Vulnerability/
CVE-2013-3338

critical

CWE

119

16/5/2013

19/9/2017

CVE-2013-3338: Buffer Overflow

First published: Thu May 16 2013(Updated: )

Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3339, CVE-2013-3340, and CVE-2013-3341.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe Acrobat Reader Notification Manager	=9.0
Adobe Acrobat Reader Notification Manager	=9.1
Adobe Acrobat Reader Notification Manager	=9.1.1
Adobe Acrobat Reader Notification Manager	=9.1.2
Adobe Acrobat Reader Notification Manager	=9.1.3
Adobe Acrobat Reader Notification Manager	=9.2
Adobe Acrobat Reader Notification Manager	=9.3
Adobe Acrobat Reader Notification Manager	=9.3.1
Adobe Acrobat Reader Notification Manager	=9.3.2
Adobe Acrobat Reader Notification Manager	=9.3.3
Adobe Acrobat Reader Notification Manager	=9.3.4
Adobe Acrobat Reader Notification Manager	=9.4
Adobe Acrobat Reader Notification Manager	=9.4.1
Adobe Acrobat Reader Notification Manager	=9.4.2
Adobe Acrobat Reader Notification Manager	=9.4.3
Adobe Acrobat Reader Notification Manager	=9.4.4
Adobe Acrobat Reader Notification Manager	=9.4.5
Adobe Acrobat Reader Notification Manager	=9.4.6
Adobe Acrobat Reader Notification Manager	=9.4.7
Adobe Acrobat Reader Notification Manager	=9.5
Adobe Acrobat Reader Notification Manager	=9.5.1
Adobe Acrobat Reader Notification Manager	=9.5.2
Adobe Acrobat Reader Notification Manager	=9.5.3
Adobe Acrobat Reader Notification Manager	=9.5.4
Adobe Acrobat Reader Notification Manager	=10.0
Adobe Acrobat Reader Notification Manager	=10.0.1
Adobe Acrobat Reader Notification Manager	=10.0.2
Adobe Acrobat Reader Notification Manager	=10.0.3
Adobe Acrobat Reader Notification Manager	=10.1
Adobe Acrobat Reader Notification Manager	=10.1.1
Adobe Acrobat Reader Notification Manager	=10.1.2
Adobe Acrobat Reader Notification Manager	=10.1.3
Adobe Acrobat Reader Notification Manager	=10.1.4
Adobe Acrobat Reader Notification Manager	=10.1.5
Adobe Acrobat Reader Notification Manager	=10.1.6
Adobe Acrobat Reader Notification Manager	=11.0
Adobe Acrobat Reader Notification Manager	=11.0.1
Adobe Acrobat Reader Notification Manager	=11.0.2
Adobe Acrobat Reader	=9.0
Adobe Acrobat Reader	=9.0
Adobe Acrobat Reader	=9.1
Adobe Acrobat Reader	=9.1
Adobe Acrobat Reader	=9.1.1
Adobe Acrobat Reader	=9.1.1
Adobe Acrobat Reader	=9.1.2
Adobe Acrobat Reader	=9.1.3
Adobe Acrobat Reader	=9.1.3
Adobe Acrobat Reader	=9.2
Adobe Acrobat Reader	=9.2
Adobe Acrobat Reader	=9.3
Adobe Acrobat Reader	=9.3
Adobe Acrobat Reader	=9.3.1
Adobe Acrobat Reader	=9.3.1
Adobe Acrobat Reader	=9.3.2
Adobe Acrobat Reader	=9.3.2
Adobe Acrobat Reader	=9.3.3
Adobe Acrobat Reader	=9.3.4
Adobe Acrobat Reader	=9.3.4
Adobe Acrobat Reader	=9.4
Adobe Acrobat Reader	=9.4.1
Adobe Acrobat Reader	=9.4.1
Adobe Acrobat Reader	=9.4.2
Adobe Acrobat Reader	=9.4.2
Adobe Acrobat Reader	=9.4.3
Adobe Acrobat Reader	=9.4.3
Adobe Acrobat Reader	=9.4.4
Adobe Acrobat Reader	=9.4.4
Adobe Acrobat Reader	=9.4.5
Adobe Acrobat Reader	=9.4.5
Adobe Acrobat Reader	=9.4.6
Adobe Acrobat Reader	=9.4.6
Adobe Acrobat Reader	=9.4.7
Adobe Acrobat Reader	=9.5
Adobe Acrobat Reader	=9.5.1
Adobe Acrobat Reader	=9.5.2
Adobe Acrobat Reader	=9.5.3
Adobe Acrobat Reader	=9.5.4
Adobe Acrobat Reader	=10.0
Adobe Acrobat Reader	=10.0
Adobe Acrobat Reader	=10.0.1
Adobe Acrobat Reader	=10.0.1
Adobe Acrobat Reader	=10.0.2
Adobe Acrobat Reader	=10.0.3
Adobe Acrobat Reader	=10.1
Adobe Acrobat Reader	=10.1.1
Adobe Acrobat Reader	=10.1.2
Adobe Acrobat Reader	=10.1.3
Adobe Acrobat Reader	=10.1.4
Adobe Acrobat Reader	=10.1.5
Adobe Acrobat Reader	=10.1.6
Adobe Acrobat Reader	=11.0
Adobe Acrobat Reader	=11.0.1
Adobe Acrobat Reader	=11.0.2

Remedy

http://www.adobe.com/support/security/bulletins/apsb13-15.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-3338?
CVE-2013-3338 has been classified with a high severity, as it allows attackers to execute arbitrary code or cause a denial of service.
How do I fix CVE-2013-3338?
To fix CVE-2013-3338, you should update Adobe Reader and Acrobat to version 9.5.5, 10.1.7, or 11.0.3 or later.
Which versions of Adobe Reader are affected by CVE-2013-3338?
Adobe Reader versions prior to 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.3 are vulnerable to CVE-2013-3338.
What types of attacks can exploit CVE-2013-3338?
CVE-2013-3338 can be exploited to execute arbitrary code or cause memory corruption leading to denial of service.
Is there a workaround for CVE-2013-3338 if I cannot update immediately?
Currently, the best mitigation for CVE-2013-3338 is to limit use of affected versions until they can be updated.

agent/type
agent/last-modified-date
agent/first-publish-date
agent/severity
agent/weakness
agent/references
agent/remedy
agent/author
agent/softwarecombine
agent/tags
agent/description
agent/event
collector/nvd-index
agent/software-canonical-lookup-request
vendor/adobe
canonical/adobe acrobat reader notification manager
version/adobe acrobat reader notification manager/9.0
version/adobe acrobat reader notification manager/9.1
version/adobe acrobat reader notification manager/9.1.1
version/adobe acrobat reader notification manager/9.1.2
version/adobe acrobat reader notification manager/9.1.3
version/adobe acrobat reader notification manager/9.2
version/adobe acrobat reader notification manager/9.3
version/adobe acrobat reader notification manager/9.3.1
version/adobe acrobat reader notification manager/9.3.2
version/adobe acrobat reader notification manager/9.3.3
version/adobe acrobat reader notification manager/9.3.4
version/adobe acrobat reader notification manager/9.4
version/adobe acrobat reader notification manager/9.4.1
version/adobe acrobat reader notification manager/9.4.2
version/adobe acrobat reader notification manager/9.4.3
version/adobe acrobat reader notification manager/9.4.4
version/adobe acrobat reader notification manager/9.4.5
version/adobe acrobat reader notification manager/9.4.6
version/adobe acrobat reader notification manager/9.4.7
version/adobe acrobat reader notification manager/9.5
version/adobe acrobat reader notification manager/9.5.1
version/adobe acrobat reader notification manager/9.5.2
version/adobe acrobat reader notification manager/9.5.3
version/adobe acrobat reader notification manager/9.5.4
version/adobe acrobat reader notification manager/10.0
version/adobe acrobat reader notification manager/10.0.1
version/adobe acrobat reader notification manager/10.0.2
version/adobe acrobat reader notification manager/10.0.3
version/adobe acrobat reader notification manager/10.1
version/adobe acrobat reader notification manager/10.1.1
version/adobe acrobat reader notification manager/10.1.2
version/adobe acrobat reader notification manager/10.1.3
version/adobe acrobat reader notification manager/10.1.4
version/adobe acrobat reader notification manager/10.1.5
version/adobe acrobat reader notification manager/10.1.6
version/adobe acrobat reader notification manager/11.0
version/adobe acrobat reader notification manager/11.0.1
version/adobe acrobat reader notification manager/11.0.2
canonical/adobe acrobat reader
version/adobe acrobat reader/9.0
version/adobe acrobat reader/9.1
version/adobe acrobat reader/9.1.1
version/adobe acrobat reader/9.1.2
version/adobe acrobat reader/9.1.3
version/adobe acrobat reader/9.2
version/adobe acrobat reader/9.3
version/adobe acrobat reader/9.3.1
version/adobe acrobat reader/9.3.2
version/adobe acrobat reader/9.3.3
version/adobe acrobat reader/9.3.4
version/adobe acrobat reader/9.4
version/adobe acrobat reader/9.4.1
version/adobe acrobat reader/9.4.2
version/adobe acrobat reader/9.4.3
version/adobe acrobat reader/9.4.4
version/adobe acrobat reader/9.4.5
version/adobe acrobat reader/9.4.6
version/adobe acrobat reader/9.4.7
version/adobe acrobat reader/9.5
version/adobe acrobat reader/9.5.1
version/adobe acrobat reader/9.5.2
version/adobe acrobat reader/9.5.3
version/adobe acrobat reader/9.5.4
version/adobe acrobat reader/10.0
version/adobe acrobat reader/10.0.1
version/adobe acrobat reader/10.0.2
version/adobe acrobat reader/10.0.3
version/adobe acrobat reader/10.1
version/adobe acrobat reader/10.1.1
version/adobe acrobat reader/10.1.2
version/adobe acrobat reader/10.1.3
version/adobe acrobat reader/10.1.4
version/adobe acrobat reader/10.1.5
version/adobe acrobat reader/10.1.6
version/adobe acrobat reader/11.0
version/adobe acrobat reader/11.0.1
version/adobe acrobat reader/11.0.2