13 matches found
Adobe Reader U3D array boundary code execution (APSB10-02: CVE-2009-3953)
A memory corruption vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to incorrect memory buffer allocation while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...
RHEL 4 : acroread (RHSA-2010:0038)
Updated acroread packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 Extras. This update has been rated as having critical security impact by the Red Hat Security Response Team. Adobe Reader allows users to view and print documents in Portable Document Form...
RHEL 3 : acroread (RHSA-2010:0060)
The acroread packages as shipped in Red Hat Enterprise Linux 3 Extras contain security flaws and should not be used. This update has been rated as having critical security impact by the Red Hat Security Response Team. Adobe Reader allows users to view and print documents in Portable Document Form...
RHEL 5 : acroread (RHSA-2010:0037)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2010:0037 advisory. - acroread: multiple code execution flaws APSB10-02 CVE-2009-3953, CVE-2009-3954, CVE-2009-3955, CVE-2009-3959 - acroread: script injection...
SuSE 10 Security Update : acroread (ZYPP Patch Number 6802)
Specially crafted PDF files could crash acroread. Attackers could exploit that to potentially execute arbitrary code. CVE-2009-3953 / CVE-2009-3954 / CVE-2009-3955 / CVE-2009-3956 / CVE-2009-3957 / CVE-2009-3958 / CVE-2009-3959 / CVE-2009-4324 Acrobat reader was updated to version 9.3 to fix thos...
Adobe - U3D CLODProgressiveMeshDeclaration Array Overrun (Metasploit) (2)
$Id: adobeu3dmeshdecl.rb 10477 2010-09-25 11:59:02Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...
CVE-2009-3953
creationtimestamp| type| source ---|---|--- 2010-09-25 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16622 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/adobeu3dmeshdecl.rb 2023-06-14 21:10:03+00:00...
SuSE 11 Security Update : acroread_ja (SAT Patch Number 1881)
Specially crafted PDF files could crash acroread. Attackers could exploit that to potentially execute arbitrary code. CVE-2009-3953 / CVE-2009-3954 / CVE-2009-3955 / CVE-2009-3956 / CVE-2009-3957 / CVE-2009-3958 / CVE-2009-3959 / CVE-2009-4324 %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
openSUSE Security Update : acroread (acroread-1849)
Specially crafted PDF files could crash acroread. Attackers could exploit that to potentially execute arbitrary code CVE-2009-3953, CVE-2009-3954, CVE-2009-3955, CVE-2009-3956, CVE-2009-3957, CVE-2009-3958, CVE-2009-3959, CVE-2009-4324. Acrobat reader was updated to version 9.3 to fix those...
SuSE 11 Security Update : Acrobat Reader (SAT Patch Number 1850)
Specially crafted PDF files could crash acroread. Attackers could exploit that to potentially execute arbitrary code. CVE-2009-3953 / CVE-2009-3954 / CVE-2009-3955 / CVE-2009-3956 / CVE-2009-3957 / CVE-2009-3958 / CVE-2009-3959 / CVE-2009-4324 Acrobat reader was updated to version 9.3 to fix thos...
Immunity Canvas: ACROBAT_U3D_MESH
Name| acrobatu3dmesh ---|--- CVE| CVE-2009-3953 Exploit Pack| CANVAS Description| acrobatu3dmesh Notes| CVE Name: CVE-2009-3953 Notes: This exploit works on Windows XP without DEP. DEP defaults to "opt-in" on Windows XP SP2/3. IE8 and modern Firefox will opt-in to DEP, causing this exploit to fai...
CVE-2009-3953
CVE-2009-3953 affects Adobe Reader/Acrobat U3D handling in PDFs. The vulnerability arises from a CLODProgressiveMeshDeclaration array boundary issue in the U3D implementation, allowing remote code execution when processing malformed U3D data. Affected product versions include Acrobat/Reader 9.x p...
Adobe U3D CLODProgressiveMeshDeclaration Array Overrun
This module exploits an array overflow in Adobe Reader and Adobe Acrobat. Affected versions include 'Adobe U3D CLODProgressiveMeshDeclaration Array Overrun', 'Description' = %q This module exploits an array overflow in Adobe Reader and Adobe Acrobat. Affected versions include MSFLICENSE, 'Author'...