Lucene search
HistoryOct 19, 2009 - 10:30 p.m.
CVE-2009-2979
cve-2009-2979
adobe
reader
acrobat
xmp
xml
entity expansion
denial of service
crafted document
nvd
6.3 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.012 Low
EPSS
Percentile
85.3%
Adobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 do not properly perform XMP-XML entity expansion, which allows remote attackers to cause a denial of service via a crafted document.
Affected configurations
Node
adobeacrobatRange≤9.1.3
ORadobeacrobatMatch7.0
ORadobeacrobatMatch7.0.1
ORadobeacrobatMatch7.0.2
ORadobeacrobatMatch7.0.3
ORadobeacrobatMatch7.0.4
ORadobeacrobatMatch7.0.5
ORadobeacrobatMatch7.0.6
ORadobeacrobatMatch7.0.7
ORadobeacrobatMatch7.0.8
ORadobeacrobatMatch7.0.9
ORadobeacrobatMatch7.1.0
ORadobeacrobatMatch7.1.1
ORadobeacrobatMatch7.1.3
ORadobeacrobatMatch8.0
ORadobeacrobatMatch8.1
ORadobeacrobatMatch8.1.1
ORadobeacrobatMatch8.1.2
ORadobeacrobatMatch8.1.3
ORadobeacrobatMatch8.1.4
ORadobeacrobatMatch8.1.6
ORadobeacrobatMatch9.0
ORadobeacrobatMatch9.1.1
ORadobeacrobatMatch9.1.2
Node
adobeacrobat_readerRange≤9.1.3
ORadobeacrobat_readerMatch7.0
ORadobeacrobat_readerMatch7.0.1
ORadobeacrobat_readerMatch7.0.2
ORadobeacrobat_readerMatch7.0.3
ORadobeacrobat_readerMatch7.0.4
ORadobeacrobat_readerMatch7.0.5
ORadobeacrobat_readerMatch7.0.6
ORadobeacrobat_readerMatch7.0.7
ORadobeacrobat_readerMatch7.0.8
ORadobeacrobat_readerMatch7.0.9
ORadobeacrobat_readerMatch7.1.0
ORadobeacrobat_readerMatch7.1.1
ORadobeacrobat_readerMatch7.1.3
ORadobeacrobat_readerMatch8.0
ORadobeacrobat_readerMatch8.1
ORadobeacrobat_readerMatch8.1.1
ORadobeacrobat_readerMatch8.1.2
ORadobeacrobat_readerMatch8.1.3
ORadobeacrobat_readerMatch8.1.4
ORadobeacrobat_readerMatch8.1.5
ORadobeacrobat_readerMatch8.1.6
ORadobeacrobat_readerMatch9.0
ORadobeacrobat_readerMatch9.1
ORadobeacrobat_readerMatch9.1.1
ORadobeacrobat_readerMatch9.1.2
Related
nvd
nvd
CVE-2009-2979
2009-10-19 22:30:00
cvelist
cvelist
CVE-2009-2979
2009-10-19 22:00:00
ubuntucve
ubuntucve
CVE-2009-2979
2009-10-19 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Reader PDF Document Metadata XML Bomb (APSB09-15; CVE-2009-2979)
2009-10-14 00:00:00
prion
prion
Code injection
2009-10-19 22:30:00
openvas
openvas
RedHat Security Advisory RHSA-2009:1499
2009-10-19 00:00:00
RedHat Security Advisory RHSA-2009:1499
2009-10-19 00:00:00
Gentoo Security Advisory GLSA 200910-03 (acroread)
2009-10-27 00:00:00
redhat
redhat
(RHSA-2009:1499) Critical: acroread security update
2009-10-14 00:00:00
nessus
nessus
RHEL 3 / 4 / 5 : acroread (RHSA-2009:1499)
2009-10-15 00:00:00
GLSA-200910-03 : Adobe Reader: Multiple vulnerabilities
2009-10-26 00:00:00
SuSE 11 Security Update : acroread_ja (SAT Patch Number 1424)
2009-10-26 00:00:00
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2009-10-25 00:00:00
seebug
seebug
Adobe Reader: Multiple vulnerabilities
2009-10-27 00:00:00
suse
suse
remote code execution in acroread, acroread_ja
2009-10-26 13:17:31
6.3 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.012 Low
EPSS
Percentile
85.3%
Related for CVE-2009-2979