Vulnerability CVE-2012-1530 - CERT Civis.Net

Vulnerability Name:

CVE-2012-1530 (CCN-81046)

Assigned:

2012-03-08

Published:

2013-01-08

Updated:

2017-09-19

Summary:

Heap-based buffer overflow in the XSLT engine in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a PDF file containing an XSL file that triggers memory corruption when the lang function processes XML data with a crafted node-set.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.8 Medium (REDHAT CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (REDHAT Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2012-1530

Source: SUSE
Type: UNKNOWN
SUSE-SU-2013:0044

Source: SUSE
Type: UNKNOWN
SUSE-SU-2013:0047

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2013:0138

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2013:0193

Source: CCN
Type: RHSA-2013-0150
Critical: acroread security update

Source: REDHAT
Type: UNKNOWN
RHSA-2013:0150

Source: CCN
Type: SA51791
Adobe Reader / Acrobat Multiple Vulnerabilities

Source: GENTOO
Type: UNKNOWN
GLSA-201308-03

Source: CCN
Type: Adobe Product Security Bulletin APSB13-02
Security updates for Adobe Reader and Acrobat

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb13-02.html

Source: CCN
Type: BID-57264
Adobe Acrobat and Reader CVE-2012-1530 Unspecified Memory Corruption Vulnerability

Source: IDEFENSE
Type: UNKNOWN
20130108 Adobe Reader and Acrobat XSLT node() and lang() Memory Corruption Vulnerability

Source: XF
Type: UNKNOWN
adobe-cve20121530-code-exec(81046)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:16094

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2012-1530

Vulnerable Configuration:

Configuration 1:

cpe:/a:adobe:acrobat:9.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.0:-:pro:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1:-:pro:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.1:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.3:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.2:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3:-:pro:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3.1:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3.2:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3.4:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.1:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.2:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.3:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.4:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.5:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.6:-:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.7:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.5.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.5.2:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:adobe:acrobat_reader:9.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.3.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.3.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.3.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.3.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.4.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.4.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.4.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.4.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.4.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.4.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.4.7:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.5.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.5.2:*:*:*:*:*:*:*

Configuration 3:

cpe:/a:adobe:acrobat:10.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:10.0:-:pro:*:*:*:*:*

OR cpe:/a:adobe:acrobat:10.0.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:10.0.1:-:pro:*:*:*:*:*

OR cpe:/a:adobe:acrobat:10.0.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:10.0.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:10.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:10.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:10.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:10.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:10.1.4:*:*:*:*:*:*:*

Configuration 4:

cpe:/a:adobe:acrobat_reader:10.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:10.0.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:10.0.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:10.0.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:10.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:10.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:10.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:10.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:10.1.4:*:*:*:*:*:*:*

Configuration 5:

cpe:/a:adobe:acrobat:11.0:*:*:*:*:*:*:*

Configuration 6:

cpe:/a:adobe:acrobat_reader:11.0:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/a:redhat:rhel_extras:5:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:rhel_extras:6:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:adobe:acrobat:9:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.0::professional:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.0::professional_extended:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.0::standard:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.0.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1::standard:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.3.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.2.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.4.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_x:10.0.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.2.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:8.2.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_x:10.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:10.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.5.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.5.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_x:10.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:10.1.3:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux_server_supplementary:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation_supplementary:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop_supplementary:6:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20121530	V	CVE-2012-1530	2021-06-25
oval:org.mitre.oval:def:20442	P	RHSA-2013:0150: acroread security update (Critical)	2015-03-09
oval:org.mitre.oval:def:23908	P	ELSA-2013:0150: acroread security update (Critical)	2014-05-26
oval:org.mitre.oval:def:16094	V	Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-0601, CVE-2013-0605, CVE-2013-0616, CVE-2013-0619, CVE-2013-0620, and CVE-2013-0623.	2013-04-29
oval:com.redhat.rhsa:def:20130150	P	RHSA-2013:0150: acroread security update (Critical)	2013-01-10
oval:com.ubuntu.precise:def:20121530000	V	CVE-2012-1530 on Ubuntu 12.04 LTS (precise) - medium.	2013-01-10