Vulnerabilities > Adobe > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-10-30 | CVE-2007-6021 | Buffer Errors vulnerability in Adobe Pagemaker 7.0.1/7.0.2 Heap-based buffer overflow in Adobe PageMaker 7.0.1 and 7.0.2 allows user-assisted remote attackers to execute arbitrary code via a .PMD file with a crafted font structure. | 9.3 |
| 2008-10-30 | CVE-2007-5394 | Buffer Errors vulnerability in Adobe Pagemaker 7.0.1/7.0.2 Stack-based buffer overflow in AldFs32.dll in Adobe PageMaker 7.0.1 and 7.0.2 allows user-assisted remote attackers to execute arbitrary code via a .PMD file with a crafted font structure, a different vulnerability than CVE-2007-5169 and CVE-2007-6432. | 9.3 |
| 2008-10-17 | CVE-2008-4473 | Buffer Errors vulnerability in Adobe Flash Player Cs3/Mx2004 Multiple heap-based buffer overflows in Adobe Flash CS3 Professional on Windows and Flash MX 2004 allow remote attackers to execute arbitrary code via an SWF file containing long control parameters. | 9.3 |
| 2008-10-17 | CVE-2008-4401 | Permissions, Privileges, and Access Controls vulnerability in Adobe Flash Player ActionScript in Adobe Flash Player 9.0.124.0 and earlier does not require user interaction in conjunction with (1) the FileReference.browse operation in the FileReference upload API or (2) the FileReference.download operation in the FileReference download API, which allows remote attackers to create a browse dialog box, and possibly have unspecified other impact, via an SWF file. | 10.0 |
| 2008-10-06 | CVE-2008-3872 | Permissions, Privileges, and Access Controls vulnerability in Adobe Flash Player Adobe Flash Player 8.0.39.0 and earlier, and 9.x up to 9.0.115.0, allows remote attackers to bypass the allowScriptAccess parameter setting via a crafted SWF file with unspecified "Filter evasion" manipulations. | 9.3 |
| 2008-09-18 | CVE-2008-3961 | Remote Code Execution vulnerability in Adobe Illustrator CS2 Multiple unspecified vulnerabilities in Adobe Illustrator CS2 on Macintosh allow user-assisted attackers to execute arbitrary code via a crafted AI file. | 9.3 |
| 2008-06-25 | CVE-2008-2641 | Remote Code Execution vulnerability in Adobe Acrobat 3D and Acrobat Reader Unspecified vulnerability in Adobe Reader and Acrobat 7.0.9 and earlier, and 8.0 through 8.1.2, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors, related to an "input validation issue in a JavaScript method." | 10.0 |
| 2008-05-08 | CVE-2008-2042 | Improper Input Validation vulnerability in Adobe Acrobat and Acrobat Reader The Javascript API in Adobe Acrobat Professional 7.0.9 and possibly 8.1.1 exposes a dangerous method, which allows remote attackers to execute arbitrary commands or trigger a buffer overflow via a crafted PDF file that invokes app.checkForUpdate with a malicious callback function. | 9.3 |
| 2008-04-23 | CVE-2008-1765 | Buffer Errors vulnerability in Adobe Photoshop 3.2 Buffer overflow in Adobe Photoshop Album Starter Edition 3.2, and possibly After Effects CS3, allows user-assisted remote attackers and physically proximate attackers to execute arbitrary code via a BMP file with an invalid image header. | 9.3 |
| 2008-04-09 | CVE-2007-6019 | Remote Code Execution vulnerability in Adobe Flash Player SWF File 'DeclareFunction2' ActionScript Tag Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly. | 9.3 |