21 matches found
Adobe Reader and Acrobat
No description provided by source. Author : Ahmed Obied [email protected] This program generates a PDF file that exploits a vulnerability CVE-2009-4324 in Adobe Reader and Acrobat. The generated PDF file was tested using Adobe Reader 9.2.0 on Windows XP SP3. The exploit's payload spawns the...
RHEL 4 : acroread (RHSA-2010:0038)
Updated acroread packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 Extras. This update has been rated as having critical security impact by the Red Hat Security Response Team. Adobe Reader allows users to view and print documents in Portable Document Form...
RHEL 5 : acroread (RHSA-2010:0037)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2010:0037 advisory. - acroread: multiple code execution flaws APSB10-02 CVE-2009-3953, CVE-2009-3954, CVE-2009-3955, CVE-2009-3959 - acroread: script injection...
RHEL 3 : acroread (RHSA-2010:0060)
The acroread packages as shipped in Red Hat Enterprise Linux 3 Extras contain security flaws and should not be used. This update has been rated as having critical security impact by the Red Hat Security Response Team. Adobe Reader allows users to view and print documents in Portable Document Form...
SuSE 10 Security Update : acroread (ZYPP Patch Number 6802)
Specially crafted PDF files could crash acroread. Attackers could exploit that to potentially execute arbitrary code. CVE-2009-3953 / CVE-2009-3954 / CVE-2009-3955 / CVE-2009-3956 / CVE-2009-3957 / CVE-2009-3958 / CVE-2009-3959 / CVE-2009-4324 Acrobat reader was updated to version 9.3 to fix thos...
SuSE 11 Security Update : acroread_ja (SAT Patch Number 1881)
Specially crafted PDF files could crash acroread. Attackers could exploit that to potentially execute arbitrary code. CVE-2009-3953 / CVE-2009-3954 / CVE-2009-3955 / CVE-2009-3956 / CVE-2009-3957 / CVE-2009-3958 / CVE-2009-3959 / CVE-2009-4324 %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
openSUSE Security Update : acroread (acroread-1849)
Specially crafted PDF files could crash acroread. Attackers could exploit that to potentially execute arbitrary code CVE-2009-3953, CVE-2009-3954, CVE-2009-3955, CVE-2009-3956, CVE-2009-3957, CVE-2009-3958, CVE-2009-3959, CVE-2009-4324. Acrobat reader was updated to version 9.3 to fix those...
SuSE 11 Security Update : Acrobat Reader (SAT Patch Number 1850)
Specially crafted PDF files could crash acroread. Attackers could exploit that to potentially execute arbitrary code. CVE-2009-3953 / CVE-2009-3954 / CVE-2009-3955 / CVE-2009-3956 / CVE-2009-3957 / CVE-2009-3958 / CVE-2009-3959 / CVE-2009-4324 Acrobat reader was updated to version 9.3 to fix thos...
Critical: Red Hat Security Advisory: acroread security update
The acroread packages as shipped in Red Hat Enterprise Linux 3 Extras contain security flaws and should not be used. This update has been rated as having critical security impact by the Red Hat Security Response Team. Adobe Reader allows users to view and print documents in Portable Document Form...
Adobe Doc.media.newPlayer Use After Free Vulnerability
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'zlib' class Metasploit3...
Adobe Reader and Acrobat (CVE-2009-4324) Exploit
No description provided by source. Author : Ahmed Obied [email protected] This program generates a PDF file that exploits a vulnerability CVE-2009-4324 in Adobe Reader and Acrobat. The generated PDF file was tested using Adobe Reader 9.2.0 on Windows XP SP3. The exploit's payload spawns the...
CVE-2009-4324
creationtimestamp| type| source ---|---|--- 2009-12-23 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10618 2010-04-30 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16503 2010-09-25 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16623 2013-09-09...
Adobe Reader media.newPlayer Use-After-Free Code Execution
Added: 12/23/2009 CVE: CVE-2009-4324 BID: 37331 OSVDB: 60980 Background Adobe Reader is free software for viewing PDF documents. Problem This issue is caused by a use-after-free error within the "Doc.Media.newPlayer" JavaScript function, which could be exploited by attackers to execute arbitrary...
Adobe Reader Acrobat - .PDF File Overflow
Adobe Reader Acrobat - .PDF File Overflow Author : Ahmed Obied [email protected] This program generates a PDF file that exploits a vulnerability CVE-2009-4324 in Adobe Reader and Acrobat. The generated PDF file was tested using Adobe Reader 9.2.0 on Windows XP SP3. The exploit's payload spawn...
Adobe Reader / Acrobat - '.PDF' File Overflow
Author : Ahmed Obied [email protected] This program generates a PDF file that exploits a vulnerability CVE-2009-4324 in Adobe Reader and Acrobat. The generated PDF file was tested using Adobe Reader 9.2.0 on Windows XP SP3. The exploit's payload spawns the calculator. Usage : python...
Adobe Reader media.newPlayer Use-After-Free Code Execution
Added: 12/23/2009 CVE: CVE-2009-4324 BID: 37331 OSVDB: 60980 Background Adobe Reader is free software for viewing PDF documents. Problem This issue is caused by a use-after-free error within the "Doc.Media.newPlayer" JavaScript function, which could be exploited by attackers to execute arbitrary...
Adobe Doc.media.newPlayer Use After Free Vulnerability
This module exploits a use after free vulnerability in Adobe Reader and Adobe Acrobat Professional versions up to and including 9.2. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'zlib' class MetasploitModul...
Immunity Canvas: ACROBAT_NEWPLAYER
Name| acrobatnewplayer ---|--- CVE| CVE-2009-4324 Exploit Pack| CANVAS Description| acrobatnewplayer Notes| CVE Name: CVE-2009-4324 VersionsAffected: Acrobat Reader =8.1.7 and =9.2 Repeatability: References: http://blogs.adobe.com/psirt/2009/12/newadobereaderandacrobatv.html Date public: 12/14/20...
CVE-2009-4324
Use-after-free vulnerability in the Doc.media.newPlayer method in Multimedia.api in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code via a crafted PDF file using ZLib compressed streams, as exploited in the wild...
CVE-2009-4324
Adobe Reader/Acrobat (Windows/macOS) is affected by CVE-2009-4324 due to a use-after-free in Doc.media.newPlayer inside Multimedia.api. A crafted PDF with ZLib streams can trigger remote code execution. The vulnerability is reported as exploited in the wild in December 2009. Affected versions inc...