Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10033
HistoryJun 09, 2009 - 12:00 a.m.

KLA10033 Multiple ACE vulnerabilities in Adobe Acrobat & Reader

2009-06-0900:00:00
Kaspersky Lab
threats.kaspersky.com
35

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.97 High

EPSS

Percentile

99.7%

JSON

Detect date:

06/09/2009

Severity:

Critical

Description:

Multiple serious vulnerabilities have been found in Adobe Acrobat & Reader.

Affected products:

Adobe Acrobat & Reader 9 versions 9.1 and earlier
Adobe Acrobat & Reader 8 versions 8.1.4 and earlier
Adobe Acrobat & Reader versions 7.1.1 and earlier

Solution:

Update to latest version
Reader

Original advisories:

Adobe bulletin

Impacts:

ACE

Related products:

Adobe Reader

CVE-IDS:

CVE-2009-14936.8High
CVE-2009-14929.3Critical

Exploitation:

Public exploits exist for this vulnerability.

Related

nessus 11
threatpost 1
openvas 14
redhat 1
suse 1
securityvulns 2
cert 1
checkpoint_advisories 4
ubuntucve 2
saint 8
cve 2
prion 2
gentoo 1
nessus
nessus
SuSE 11 Security Update : acroread_ja (SAT Patch Number 904)
2009-09-24 00:00:00
openSUSE 10 Security Update : acroread (acroread-6258)
2009-05-22 00:00:00
SuSE 11 Security Update : Acrobat Reader (SAT Patch Number 899)
2009-09-24 00:00:00
threatpost
threatpost
Adobe joins Patch Tuesday barrage
2009-05-13 14:36:11
openvas
openvas
Solaris Update for Adobe Acrobat Reader 121104-10
2009-10-13 00:00:00
Adobe Reader Denial of Service Vulnerability (May 2009)
2009-05-11 00:00:00
SUSE: Security Advisory for acroread (SUSE-SA:2009:027)
2009-05-25 00:00:00
redhat
redhat
(RHSA-2009:0478) Critical: acroread security update
2009-05-13 00:00:00
suse
suse
remote code execution in acroread
2009-05-20 18:01:50
securityvulns
securityvulns
Adobe reader multiple security vulnerabilities
2009-05-14 00:00:00
US-CERT Technical Cyber Security Alert TA09-133B -- Adobe Reader and Acrobat JavaScript Vulnerabilities
2009-05-14 00:00:00
cert
cert
Adobe Reader and Acrobat customDictionaryOpen() and getAnnots() JavaScript vulnerabilities
2009-04-29 00:00:00
checkpoint_advisories
checkpoint_advisories
Preemptive Protection against Adobe Reader JavaScript getAnnots Method Memory Corruption Vulnerability
2009-05-03 00:00:00
Adobe Acrobat getAnnots Remote Code Execution - Ver2 (CVE-2009-1492)
2015-05-18 00:00:00
Adobe Reader JavaScript spell.customDictionaryOpen Method Memory Corruption - Ver2 (CVE-2009-1493)
2014-03-03 00:00:00
ubuntucve
ubuntucve
CVE-2009-1492
2009-04-30 00:00:00
CVE-2009-1493
2009-04-30 00:00:00
saint
saint
Adobe Reader Javascript API getAnnots method vulnerability
2009-05-29 00:00:00
Adobe Reader Javascript API getAnnots method vulnerability
2009-05-29 00:00:00
Adobe Reader Javascript API getAnnots method vulnerability
2009-05-29 00:00:00
cve
cve
CVE-2009-1492
2009-04-30 20:30:00
CVE-2009-1493
2009-04-30 20:30:00
prion
prion
Authentication flaw
2009-04-30 20:30:00
Memory corruption
2009-04-30 20:30:00
gentoo
gentoo
Adobe Reader: User-assisted execution of arbitrary code
2009-07-12 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.97 High

EPSS

Percentile

99.7%

JSON
Related for KLA10033
nessus11threatpost1openvas14redhat1suse1securityvulns2cert1checkpoint_advisories4ubuntucve2saint8cve2prion2gentoo1