Lucene search

K

[email protected]NVD:CVE-2009-4195

HistoryDec 04, 2009 - 11:30 a.m.

CVE-2009-4195

2009-12-0411:30:00

CWE-119

[email protected]

web.nvd.nist.gov

5

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.972

Percentile

99.9%

Buffer overflow in Adobe Illustrator CS4 14.0.0, CS3 13.0.3 and earlier, and CS3 13.0.0 allows remote attackers to execute arbitrary code via a long DSC comment in an Encapsulated PostScript (.eps) file. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd

Node

adobeillustratorMatch13.0.0cs4

OR

adobeillustratorMatch14.0.0cs4

VendorProductVersionCPE
adobeillustrator13.0.0cpe:2.3:a:adobe:illustrator:13.0.0:cs4:*:*:*:*:*:*
adobeillustrator14.0.0cpe:2.3:a:adobe:illustrator:14.0.0:cs4:*:*:*:*:*:*

References

blogs.adobe.com/psirt/2009/12/potential_adobe_illustrator_cs.html

osvdb.org/60632

retrogod.altervista.org/9sg_adobe_illuso.html

secunia.com/advisories/37563

www.adobe.com/support/security/bulletins/apsb10-01.html

www.securityfocus.com/archive/1/508175/100/0/threaded

www.securityfocus.com/bid/37192

www.securitytracker.com/id?1023276

www.vupen.com/english/advisories/2009/3396

exchange.xforce.ibmcloud.com/vulnerabilities/54521

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.972

Percentile

99.9%

Related for NVD:CVE-2009-4195

checkpoint_advisories2 saint4 exploitdb3 cve1 packetstorm1 cvelist1 metasploit1 prion1 nessus1 threatpost1 openvas2