Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2009:1499
HistoryOct 14, 2009 - 12:00 a.m.

(RHSA-2009:1499) Critical: acroread security update

2009-10-1400:00:00
access.redhat.com
18

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.973 High

EPSS

Percentile

99.9%

JSON

Adobe Reader allows users to view and print documents in Portable Document
Format (PDF).

Multiple flaws were discovered in Adobe Reader. A specially-crafted PDF
file could cause Adobe Reader to crash or, potentially, execute arbitrary
code as the user running Adobe Reader when opened. (CVE-2009-2980,
CVE-2009-2983, CVE-2009-2985, CVE-2009-2986, CVE-2009-2990, CVE-2009-2991,
CVE-2009-2993, CVE-2009-2994, CVE-2009-2996, CVE-2009-2997, CVE-2009-2998,
CVE-2009-3458, CVE-2009-3459, CVE-2009-3462)

Multiple flaws were discovered in Adobe Reader. A specially-crafted PDF
file could cause Adobe Reader to crash when opened. (CVE-2009-2979,
CVE-2009-2988, CVE-2009-3431)

An input validation flaw was found in Adobe Reader. Opening a
specially-crafted PDF file could lead to a Trust Manager restrictions
bypass. (CVE-2009-2981)

All Adobe Reader users should install these updated packages. They contain
Adobe Reader version 8.1.7, which is not vulnerable to these issues. All
running instances of Adobe Reader must be restarted for the update to take
effect.

OSVersionArchitecturePackageVersionFilename
RedHat5i386acroread<Β 8.1.7-1.el5acroread-8.1.7-1.el5.i386.rpm
RedHat5i386acroread-plugin<Β 8.1.7-1.el5acroread-plugin-8.1.7-1.el5.i386.rpm

Related

nessus 13
openvas 10
gentoo 1
seebug 4
suse 1
securityvulns 8
prion 19
cve 19
ubuntucve 18
checkpoint_advisories 14
packetstorm 6
exploitpack 1
saint 12
cert 1
zdi 1
exploitdb 1
canvas 1
attackerkb 1
nessus
nessus
RHEL 3 / 4 / 5 : acroread (RHSA-2009:1499)
2009-10-15 00:00:00
GLSA-200910-03 : Adobe Reader: Multiple vulnerabilities
2009-10-26 00:00:00
openSUSE 10 Security Update : acroread (acroread-6588)
2009-10-30 00:00:00
openvas
openvas
RedHat Security Advisory RHSA-2009:1499
2009-10-19 00:00:00
RedHat Security Advisory RHSA-2009:1499
2009-10-19 00:00:00
Gentoo Security Advisory GLSA 200910-03 (acroread)
2009-10-27 00:00:00
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2009-10-25 00:00:00
seebug
seebug
Adobe Reader: Multiple vulnerabilities
2009-10-27 00:00:00
Adobe Acrobat Reader 7-9 - U3D BoF
2014-07-01 00:00:00
Adobe Acrobat Reader 7-9 U3D BoF
2009-10-27 00:00:00
suse
suse
remote code execution in acroread, acroread_ja
2009-10-26 13:17:31
securityvulns
securityvulns
Adobe Acrobat / Reader multiple security vulnerabilities
2009-10-19 00:00:00
VUPEN Security - Adobe Acrobat and Reader U3D Filter Code Execution Vulnerabilities
2009-10-17 00:00:00
n.runs-SA-2009.007 - Adobe Acrobat - Invalid pointer write could lead to arbitrary code execution
2009-10-17 00:00:00
prion
prion
Memory corruption
2009-10-19 22:30:00
Input validation
2009-10-19 22:30:00
Input validation
2009-10-19 22:30:00
cve
cve
CVE-2009-2998
2009-10-19 22:30:00
CVE-2009-2985
2009-10-19 22:30:00
CVE-2009-3458
2009-10-19 22:30:00
ubuntucve
ubuntucve
CVE-2009-3458
2009-10-19 00:00:00
CVE-2009-2998
2009-10-19 00:00:00
CVE-2009-2996
2009-10-19 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Reader PDF Document Metadata XML Bomb (APSB09-15; CVE-2009-2979)
2009-10-14 00:00:00
Adobe Reader Decode Object Integer Overflow (APSB09-15; CVE-2009-2980)
2009-10-14 00:00:00
Adobe Acrobat and Reader U3D CLODMeshDeclaration Memory Corruption (CVE-2009-2994)
2012-01-03 00:00:00
packetstorm
packetstorm
Adobe Acrobat Reader Array Overrun
2009-10-27 00:00:00
Adobe U3D CLODProgressiveMeshDeclaration Array Overrun
2009-12-31 00:00:00
Adobe U3D CLODProgressiveMeshDeclaration Array Overrun
2009-12-31 00:00:00
exploitpack
exploitpack
Adobe Acrobat Reader 7 9 - U3D Buffer Overflow
2009-10-27 00:00:00
saint
saint
Adobe Acrobat Reader U3D CLODMeshContinuation Code Execution
2009-11-20 00:00:00
Adobe Acrobat Reader U3D CLODMeshContinuation Code Execution
2009-11-20 00:00:00
Adobe Acrobat Reader U3D CLODMeshContinuation Code Execution
2009-11-20 00:00:00
cert
cert
Adobe Acrobat and Reader contain vulnerabilities in multiple Document Object JavaScript methods
2009-10-13 00:00:00
zdi
zdi
Adobe Reader Compact Font Format Malformed Index Memory Corruption Vulnerability
2009-10-13 00:00:00
exploitdb
exploitdb
Adobe Acrobat Reader 7 &lt; 9 - U3D Buffer Overflow
2009-10-27 00:00:00
canvas
canvas
Immunity Canvas: ACROBAT_U3D_MESH
2010-01-13 19:30:00
attackerkb
attackerkb
CVE-2009-3953
2010-01-13 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.973 High

EPSS

Percentile

99.9%

JSON
Related for RHSA-2009:1499
nessus13openvas10gentoo1seebug4suse1securityvulns8prion19cve19ubuntucve18checkpoint_advisories14packetstorm6exploitpack1saint12cert1zdi1exploitdb1canvas1attackerkb1