CVE-2009-3459

Heap-based buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows remote attackers to execute arbitrary code via a crafted PDF file that triggers memory corruption, as exploited in the wild in October 2009. NOTE: some of these details are obtaine...

Adobe Reader 9.1.3 Acrobat - COM Objects Memory Corruption Remote Code Execution

Adobe Reader 9.1.3 Acrobat - COM Objects Memory Corruption Remote Code Execution source: https://www.securityfocus.com/bid/36668/info Adobe Reader and Acrobat are prone to a remote code-execution vulnerability because they fail to properly handle certain COM objects. An attacker can exploit this...

Adobe Reader Compact Font Format Malformed Index Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat and Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists when the...

PT-2009-5753

Name of the Vulnerable Software and Affected Versions Adobe Reader and Acrobat versions 7.x through 7.1.3 Adobe Reader and Acrobat versions 8.x through 8.1.6 Adobe Reader and Acrobat versions 9.x through 9.1 Description A heap-based buffer overflow allows remote attackers to execute arbitrary cod...

VulnCheck KEV: CVE-2009-3459

Heap-based buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows remote attackers to execute arbitrary code via a crafted PDF file that triggers memory corruption, as exploited in the wild in October 2009. NOTE: some of these details are...

CVE-2009-3431

Stack consumption vulnerability in Adobe Reader and Acrobat 9.1.3, 9.1.2, 9.1.1, and earlier 9.x versions; 8.1.6 and earlier 8.x versions; and possibly 7.1.4 and earlier 7.x versions allows remote attackers to cause a denial of service application crash via a PDF file with a large number of open...

CVE-2009-3431

Stack consumption vulnerability in Adobe Reader and Acrobat 9.1.3, 9.1.2, 9.1.1, and earlier 9.x versions; 8.1.6 and earlier 8.x versions; and possibly 7.1.4 and earlier 7.x versions allows remote attackers to cause a denial of service application crash via a PDF file with a large number of open...

Design/Logic Flaw

Stack consumption vulnerability in Adobe Reader and Acrobat 9.1.3, 9.1.2, 9.1.1, and earlier 9.x versions; 8.1.6 and earlier 8.x versions; and possibly 7.1.4 and earlier 7.x versions allows remote attackers to cause a denial of service application crash via a PDF file with a large number of open...

CVE-2009-3431

Stack consumption vulnerability in Adobe Reader and Acrobat 9.1.3, 9.1.2, 9.1.1, and earlier 9.x versions; 8.1.6 and earlier 8.x versions; and possibly 7.1.4 and earlier 7.x versions allows remote attackers to cause a denial of service application crash via a PDF file with a large number of open...

SuSE 11 Security Update : acroread_ja (SAT Patch Number 769)

Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. CVE-2009-0658 / CVE-2009-0927 / CVE-2009-0193 / CVE-2009-0928 / CVE-2009-1061 /...

Adobe Acrobat and Reader Collab 'getIcon()' JavaScript Method Exploit and Report (CVE-2009-0927)

Hi everyone, I published some work I did concerning the adobe reader Collab.getIcon buffer overflow. You can find the package exploit/report/payload on: http://www.coromputer.net/CVE-2009-0927package.zip Cheers, Ivan Rodriguez Almuina kralor - HiC && Crpt...

Adobe Reader 8.0.0 Denial Of Service

Adobe Reader 8.0.0 AcroPDF.dll Denial of Service Expl0it Software vendor URL: http://www.adobe.com Vulnerability at: AcroPDF.dll Author: theEdit0r website: Expl0iters.ir, Anti-security.ir tnQu : h4ckcity.net Tested on Windows XP Professional SP2 all patched, with Internet Explorer 7...

RHEL 3 / 4 / 5 : acroread (RHSA-2008:0974)

Updated acroread packages that fix various security issues are now available for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team...

RHEL 5 : acroread (RHSA-2009:0478)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2009:0478 advisory. Adobe Reader allows users to view and print documents in Portable Document Format PDF. Two flaws were discovered in Adobe Reader's JavaScrip...

RHEL 3 / 4 / 5 : acroread (RHSA-2008:0144)

Updated acroread packages that fix several security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. The Adobe Reader allows users to view and print documents in portable documen...

RHEL 3 / 4 / 5 : acroread (RHSA-2009:1109)

Updated acroread packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team...

Gentoo Security Advisory GLSA 200908-04 (adobe-flash acroread)

The remote host is missing updates announced in advisory GLSA 200908-04. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Adobe Reader < 9.1.3 Flash Handling Unspecified Arbitrary Code Execution (APSB09-10)

The version of Adobe Reader 9 installed on the remote host is earlier than 9.1.3. Such versions are reportedly affected by a memory corruption vulnerability that could potentially lead to code execution. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid40494;...

flash-plugin: Remote code execution vulnerability via malicious SWF (Shockwave Flash) content

Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9.x through 9.0.159.0 and 10.x through 10.0.22.87, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via 1 a crafted Flash application in a .pdf file or 2...

flash-plugin: Remote code execution vulnerability via malicious SWF (Shockwave Flash) content

Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9.x through 9.0.159.0 and 10.x through 10.0.22.87, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via 1 a crafted Flash application in a .pdf file or 2...