9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.97 High
EPSS
Percentile
99.7%
Added: 01/20/2010
CVE: CVE-2009-4195
BID: 37192
OSVDB: 60632
Adobe Illustrator software is a comprehensive vector graphics environment for creative professionals that is used for both drawing and typographical work. Illustrator supports several vector file formats including AI, CDR, PDF, SVG, DXF, and PS/EPS formats.
A buffer overflow vulnerability in **MPS.dll**
allows command execution when a user opens a specially crafted EPS file.
Follow instructions in APSB10-01.
<http://secunia.com/secunia_research/2009-58/>
Exploit works on Adobe Illustrator CS4 14.0.0 and requires a user to open the exploit file in Adobe Illustrator.
Windows