Vulnerabilities > Adobe > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-05-01 | CVE-2009-1365 | RPC Call Privilege Escalation vulnerability in Adobe Flash Media Server Unspecified vulnerability in Adobe Flash Media Server (FMS) before 3.0.4 and 3.5.x before 3.5.2, as used in Flash Media Interactive Server and Flash Media Streaming Server, allows remote attackers to execute arbitrary remote procedures within an ActionScript file on the server via RPC requests. | 7.5 |
| 2008-12-05 | CVE-2008-5331 | Cryptographic Issues vulnerability in Adobe Acrobat 9/9.0 Adobe Acrobat 9 uses more efficient encryption than previous versions, which makes it easier for attackers to guess a document's password via a brute-force attack. | 7.5 |
| 2008-11-10 | CVE-2008-4831 | Permissions, Privileges, and Access Controls vulnerability in Adobe Coldfusion 7.2/8.0/8.0.1 Unspecified vulnerability in Adobe ColdFusion 8 and 8.0.1 and ColdFusion MX 7.0.2 allows local users to bypass sandbox restrictions, and obtain sensitive information or possibly gain privileges, via unknown vectors. | 7.2 |
| 2008-11-10 | CVE-2008-4820 | Information Exposure vulnerability in Adobe Flash Player Unspecified vulnerability in the Flash Player ActiveX control in Adobe Flash Player 9.0.124.0 and earlier on Windows allows attackers to obtain sensitive information via unknown vectors. | 7.1 |
| 2008-11-05 | CVE-2008-4815 | Permissions, Privileges, and Access Controls vulnerability in Adobe Acrobat and Acrobat Reader Untrusted search path vulnerability in Adobe Reader and Acrobat 8.1.2 and earlier on Unix and Linux allows attackers to gain privileges via a Trojan Horse program in an unspecified directory that is associated with an insecure RPATH. | 7.5 |
| 2008-11-04 | CVE-2008-2992 | Out-of-bounds Write vulnerability in multiple products Stack-based buffer overflow in Adobe Acrobat and Reader 8.1.2 and earlier allows remote attackers to execute arbitrary code via a PDF file that calls the util.printf JavaScript function with a crafted format string argument, a related issue to CVE-2008-1104. | 7.8 |
| 2008-04-09 | CVE-2008-1656 | Permissions, Privileges, and Access Controls vulnerability in Adobe Coldfusion 8.0/8.1 Adobe ColdFusion 8 and 8.0.1 does not properly implement the public access level for CFC methods, which allows remote attackers to invoke these methods via Flex 2 remoting, a different vulnerability than CVE-2006-4725. | 7.5 |
| 2008-03-12 | CVE-2008-1203 | Unspecified vulnerability in Adobe Coldfusion 7.0/8.0 The administrator interface for Adobe ColdFusion 8 and ColdFusion MX7 does not log failed authentication attempts, which makes it easier for remote attackers to conduct brute force attacks without detection. | 7.5 |
| 2008-02-12 | CVE-2007-5659 | Classic Buffer Overflow vulnerability in Adobe Acrobat Multiple buffer overflows in Adobe Reader and Acrobat 8.1.1 and earlier allow remote attackers to execute arbitrary code via a PDF file with long arguments to unspecified JavaScript methods. | 7.8 |
| 2007-05-18 | CVE-2007-2682 | Unspecified vulnerability in Adobe Creative Suite 3.0 The installer for Adobe Version Cue CS3 Server on Apple Mac OS X, as used in Adobe Creative Suite 3 (CS3), does not re-enable the personal firewall after completing the product installation, which allows remote attackers to bypass intended firewall rules. | 7.5 |