Lucene search

K
cveAdobeCVE-2009-3459
HistoryOct 13, 2009 - 10:30 a.m.

CVE-2009-3459

2009-10-1310:30:00
CWE-119
adobe
web.nvd.nist.gov
51
adobe
reader
acrobat
cve-2009-3459
buffer overflow
pdf
security vulnerability

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.973

Percentile

99.9%

Heap-based buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows remote attackers to execute arbitrary code via a crafted PDF file that triggers memory corruption, as exploited in the wild in October 2009. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd
Node
adobeacrobatRange≀9.1.3
OR
adobeacrobatMatch3.0
OR
adobeacrobatMatch3.1
OR
adobeacrobatMatch4.0
OR
adobeacrobatMatch4.0.5
OR
adobeacrobatMatch4.0.5a
OR
adobeacrobatMatch4.0.5c
OR
adobeacrobatMatch5.0
OR
adobeacrobatMatch5.0.5
OR
adobeacrobatMatch5.0.6
OR
adobeacrobatMatch5.0.10
OR
adobeacrobatMatch6.0
OR
adobeacrobatMatch6.0.1
OR
adobeacrobatMatch6.0.2
OR
adobeacrobatMatch6.0.3
OR
adobeacrobatMatch6.0.4
OR
adobeacrobatMatch6.0.5
OR
adobeacrobatMatch7.0
OR
adobeacrobatMatch7.0.1
OR
adobeacrobatMatch7.0.2
OR
adobeacrobatMatch7.0.3
OR
adobeacrobatMatch7.0.4
OR
adobeacrobatMatch7.0.5
OR
adobeacrobatMatch7.0.6
OR
adobeacrobatMatch7.0.7
OR
adobeacrobatMatch7.0.8
OR
adobeacrobatMatch7.0.9
OR
adobeacrobatMatch7.1.3
OR
adobeacrobatMatch8.0
OR
adobeacrobatMatch8.1
OR
adobeacrobatMatch8.1.1
OR
adobeacrobatMatch8.1.2
OR
adobeacrobatMatch8.1.3
OR
adobeacrobatMatch8.1.4
OR
adobeacrobatMatch8.1.6
OR
adobeacrobatMatch9
OR
adobeacrobatMatch9.0.0
OR
adobeacrobatMatch9.1
OR
adobeacrobatMatch9.1.1
OR
adobeacrobatMatch9.1.2
Node
adobeacrobat_readerRange≀9.0
OR
adobereaderMatch3.0
OR
adobereaderMatch4.0
OR
adobereaderMatch4.0.5
OR
adobereaderMatch4.0.5a
OR
adobereaderMatch4.0.5c
OR
adobereaderMatch4.5
OR
adobereaderMatch5.0
OR
adobereaderMatch5.0.5
OR
adobereaderMatch5.0.6
OR
adobereaderMatch5.0.7
OR
adobereaderMatch5.0.9
OR
adobereaderMatch5.0.10
OR
adobereaderMatch5.0.11
OR
adobereaderMatch5.1
OR
adobereaderMatch6.0
OR
adobereaderMatch6.0.1
OR
adobereaderMatch6.0.2
OR
adobereaderMatch6.0.3
OR
adobereaderMatch6.0.4
OR
adobereaderMatch6.0.5
OR
adobereaderMatch7.0.1
OR
adobereaderMatch7.0.2
OR
adobereaderMatch7.0.3
OR
adobereaderMatch7.0.5
OR
adobereaderMatch7.0.7
OR
adobereaderMatch7.0.8
OR
adobereaderMatch7.0.9
OR
adobereaderMatch7.1.0
OR
adobereaderMatch7.1.1
OR
adobereaderMatch7.1.3
OR
adobereaderMatch8.1.1
OR
adobereaderMatch8.1.2
OR
adobereaderMatch8.1.4
OR
adobereaderMatch8.1.6
OR
adobereaderMatch9.0
OR
adobereaderMatch9.1
OR
adobereaderMatch9.1.2
VendorProductVersionCPE
adobeacrobat5.0cpe:/a:adobe:acrobat:5.0:::
adobeacrobat5.0.5cpe:/a:adobe:acrobat:5.0.5:::
adobeacrobat9.1cpe:/a:adobe:acrobat:9.1:::
adobeacrobat4.0.5acpe:/a:adobe:acrobat:4.0.5a:::
adobeacrobat7.1.3cpe:/a:adobe:acrobat:7.1.3:::
adobeacrobat8.1.2cpe:/a:adobe:acrobat:8.1.2:::
adobeacrobat7.0.8cpe:/a:adobe:acrobat:7.0.8:::
adobeacrobat6.0.5cpe:/a:adobe:acrobat:6.0.5:::
adobeacrobat8.1.6cpe:/a:adobe:acrobat:8.1.6:::
adobeacrobat9.1.1cpe:/a:adobe:acrobat:9.1.1:::
Rows per page:
1-10 of 401

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.973

Percentile

99.9%