10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.972 High
EPSS
Percentile
99.8%
Name | acrobat_u3d_mesh |
---|---|
CVE | CVE-2009-3953 Exploit Pack |
Notes: | |
This exploit works on Windows XP without DEP. DEP defaults to “opt-in” on Windows XP SP2/3. IE8 and modern Firefox | |
will opt-in to DEP, causing this exploit to fail silently. |
IE7 will work by default (opt-in). Obviously, if the machine does not support DEP (older machines)
then this exploit will also work.
VersionsAffected: Acrobat Reader <=8.1.6 and <=9.1.3 (SA|IE6,7,8|FF3.0.15,5.4) NODEP!
Repeatability:
References: http://www.adobe.com/support/security/bulletins/apsb09-15.html
Date public: 10/13/2009
CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2994