Lucene search
SAINT CorporationSAINT:DAB4774FB8BA41F07B5979481EF06BB5HistoryJan 20, 2010 - 12:00 a.m.
Adobe Illustrator EPS File DSC Comment Buffer Overflow
2010-01-2000:00:00
SAINT Corporation
www.saintcorporation.com
22
0.97 High
EPSS
Percentile
99.7%
Added: 01/20/2010
CVE: CVE-2009-4195
BID: 37192
OSVDB: 60632
Background
Adobe Illustrator software is a comprehensive vector graphics environment for creative professionals that is used for both drawing and typographical work. Illustrator supports several vector file formats including AI, CDR, PDF, SVG, DXF, and PS/EPS formats.
Problem
A buffer overflow vulnerability in **MPS.dll** allows command execution when a user opens a specially crafted EPS file.
Resolution
Follow instructions in APSB10-01.
References
<http://secunia.com/secunia_research/2009-58/>
Limitations
Exploit works on Adobe Illustrator CS4 14.0.0 and requires a user to open the exploit file in Adobe Illustrator.
Platforms
Windows
Related
cvelist
cvelist
CVE-2009-4195
2009-12-04 11:00:00
packetstorm
packetstorm
Adobe Illustrator CS4 v14.0.0
2009-12-31 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Illustrator EPS File DSC Comment Buffer Overflow (CVE-2009-4195)
2010-02-02 00:00:00
saint
saint
Adobe Illustrator EPS File DSC Comment Buffer Overflow
2010-01-20 00:00:00
Adobe Illustrator EPS File DSC Comment Buffer Overflow
2010-01-20 00:00:00
Adobe Illustrator EPS File DSC Comment Buffer Overflow
2010-01-20 00:00:00
prion
prion
Buffer overflow
2009-12-04 11:30:00
cve
cve
CVE-2009-4195
2009-12-04 11:30:00
openvas
openvas
nessus
nessus
Adobe Illustrator Multiple Vulnerabilities (APSB10-01)
2010-01-12 00:00:00
threatpost
threatpost
Adobe Patches Critical Illustrator Security Holes
2010-01-08 15:45:43