Advisories

A chronological list of vulnerabilities published by STAR Labs researchers, with technical details, affected versions, and disclosure timelines.

Advisory May 14, 2019

(CVE-2019-7142) Acrobat Reader DC 2d.x3d!_LoadRGB() Out-of-Bounds Read/Write in TRGB::expandrow()

CVE: CVE-2019-7142 Tested Versions: Adobe Reader DC 2019.010.20099 Product URL(s): https://acrobat.adobe.com/us/en/acrobat.html https://get.adobe.com/reader/ …

ByWei Lei

Advisory May 07, 2019

(CVE-2019-8010) Acrobat Reader DC 2d.x3d!_LoadTIFF() Out-of-Bounds Read

CVE: CVE-2019-8010 Tested Versions: Adobe Reader DC 2019.010.20099 Product URL(s): https://acrobat.adobe.com/us/en/acrobat.html https://get.adobe.com/reader/ …

ByWei Lei

Advisory Apr 09, 2019

(CVE-2019-7118) Acrobat Reader DC 2d.x3d!_LoadRGB() Out-of-Bounds Write in TRGB::Read()

CVE: CVE-2019-7118 Tested Versions: Adobe Reader DC 2019.010.20064 Product URL(s): https://acrobat.adobe.com/us/en/acrobat.html https://get.adobe.com/reader/ …

ByWei Lei

Advisory Apr 09, 2019

(CVE-2019-7119) Acrobat Reader DC 2d.x3d!_LoadRGB() Out-of-Bounds Write in TRGB::Read()

CVE: CVE-2019-7119 Tested Versions: Adobe Reader DC 2019.010.20064 Product URL(s): https://acrobat.adobe.com/us/en/acrobat.html https://get.adobe.com/reader/ …

ByWei Lei

Advisory Apr 09, 2019

(CVE-2019-7120) Acrobat Reader DC 2d.x3d!_LoadILBM() Out-of-Bounds Read in TIF::Read()

CVE: CVE-2019-7120 Tested Versions: Adobe Reader DC 2019.010.20064 Product URL(s): https://acrobat.adobe.com/us/en/acrobat.html https://get.adobe.com/reader/ …

ByWei Lei

Advisory Apr 09, 2019

(CVE-2019-7121) Acrobat Reader DC 2d.x3d!_LoadILBM() Out-of-Bounds Read in TIF::Read()

CVE: CVE-2019-7121 Tested Versions: Adobe Reader DC 2019.010.20064 Product URL(s): https://acrobat.adobe.com/us/en/acrobat.html https://get.adobe.com/reader/ …

ByWei Lei

Advisory Apr 09, 2019

(CVE-2019-7122) Acrobat Reader DC 2d.x3d!_LoadTIFF() Out-of-Bounds Read in TTIFFread::TifReadChunkyRGB()

CVE: CVE-2019-7122 Tested Versions: Adobe Reader DC 2019.010.20064 Product URL(s): https://acrobat.adobe.com/us/en/acrobat.html https://get.adobe.com/reader/ …

ByWei Lei

Advisory Apr 09, 2019

(CVE-2019-7123) Acrobat Reader DC 2d.x3d!_LoadRGB() Memory Corruption in TRGB::expandrow()

CVE: CVE-2019-7123 Tested Versions: Adobe Reader DC 2019.010.20064 Product URL(s): https://acrobat.adobe.com/us/en/acrobat.html https://get.adobe.com/reader/ …

ByWei Lei

Advisory Mar 20, 2019

(CVE-2019-2722) Oracle VirtualBox e1000 Integer Underflow - Pwn2Own

CVE: CVE-2019-2722 Tested Versions: Oracle VirtualBox 5.2.28 and earlier Oracle VirtualBox 6.0.6 and earlier Product URL(s): https://virtualbox.org VirtualBox …

ByPhạm Hồng Phi

Advisory Mar 07, 2019

(CVE-2019-9133) KMPlayer Subtitles Parser Integer Overflow Vulnerability

CVE: CVE-2019-9133 Tested Versions: KMPlayer 4.2.2.12 KMP Plus Product URL(s): http://www.kmplayer.com/ Description of the vulnerability K-Multimedia Player …

ByPhạm Hồng Phi