9.3

CVE-2009-1062

Adobe Acrobat Reader 9 before 9.1, 8 before 8.1.4, and 7 before 7.1.1 might allow remote attackers to trigger memory corruption and possibly execute arbitrary code via unknown attack vectors related to JBIG2, a different vulnerability than CVE-2009-0193 and CVE-2009-1061.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdobeAcrobat Editionprofessional Version <= 9.0
AdobeAcrobat Editionstandard Version <= 9.0
AdobeAcrobat Version7.0 Editionprofessional
AdobeAcrobat Version7.0 Editionstandard
AdobeAcrobat Version7.0.1 Editionprofessional
AdobeAcrobat Version7.0.1 Editionstandard
AdobeAcrobat Version7.0.2 Editionprofessional
AdobeAcrobat Version7.0.2 Editionstandard
AdobeAcrobat Version7.0.3 Editionprofessional
AdobeAcrobat Version7.0.3 Editionstandard
AdobeAcrobat Version7.0.4 Editionprofessional
AdobeAcrobat Version7.0.4 Editionstandard
AdobeAcrobat Version7.0.5 Editionprofessional
AdobeAcrobat Version7.0.5 Editionstandard
AdobeAcrobat Version7.0.6 Editionprofessional
AdobeAcrobat Version7.0.6 Editionstandard
AdobeAcrobat Version7.0.7 Editionprofessional
AdobeAcrobat Version7.0.7 Editionstandard
AdobeAcrobat Version7.0.8 Editionprofessional
AdobeAcrobat Version7.0.8 Editionstandard
AdobeAcrobat Version7.0.9 Editionprofessional
AdobeAcrobat Version7.1 Editionprofessional
AdobeAcrobat Version7.1 Editionstandard
AdobeAcrobat Version7.1.1 Editionstandard
AdobeAcrobat Version8.0 Editionprofessional
AdobeAcrobat Version8.0 Editionstandard
AdobeAcrobat Version8.1 Editionstandard
AdobeAcrobat Version8.1.1 Editionprofessional
AdobeAcrobat Version8.1.1 Editionstandard
AdobeAcrobat Version8.1.2 Editionprofessional
AdobeAcrobat Version8.1.2 Editionstandard
AdobeAcrobat Version8.1.2 Updatesecurity_update Editionprofessional
AdobeAcrobat Version8.1.3 Editionprofessional
AdobeAcrobat Version8.1.3 Editionstandard
AdobeAcrobat Version8.1.4 Editionprofessional
AdobeAcrobat Version8.1.4 Editionstandard
AdobeAcrobat Reader Version <= 9.0
AdobeAcrobat Reader Version7.0
AdobeReader Version3.0
AdobeReader Version4.0
AdobeReader Version4.0.5
AdobeReader Version4.0.5a
AdobeReader Version4.0.5c
AdobeReader Version4.5
AdobeReader Version5.0
AdobeReader Version5.0.5
AdobeReader Version5.0.6
AdobeReader Version5.0.7
AdobeReader Version5.0.9
AdobeReader Version5.0.10
AdobeReader Version5.0.11
AdobeReader Version5.1
AdobeReader Version6.0
AdobeReader Version6.0.1
AdobeReader Version6.0.2
AdobeReader Version6.0.3
AdobeReader Version6.0.4
AdobeReader Version6.0.5
AdobeReader Version7.0.1
AdobeReader Version7.0.2
AdobeReader Version7.0.3
AdobeReader Version7.0.5
AdobeReader Version7.0.7
AdobeReader Version7.0.8
AdobeReader Version7.0.9
AdobeReader Version7.1.0
AdobeReader Version7.1.1
AdobeReader Version8.1.1
AdobeReader Version8.1.2
AdobeReader Version8.1.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 6.2% 0.926
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.adobe.com/support/security/bulletins/apsb09-04.html
Patch
Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00005.html
http://secunia.com/advisories/34392
Vendor Advisory
http://secunia.com/advisories/34490
Vendor Advisory
http://secunia.com/advisories/34706
Vendor Advisory
http://secunia.com/advisories/34790
Vendor Advisory
http://security.gentoo.org/glsa/glsa-200904-17.xml
http://sunsolve.sun.com/search/document.do?assetkey=1-66-256788-1
http://www.redhat.com/support/errata/RHSA-2009-0376.html
http://www.vupen.com/english/advisories/2009/1019
Vendor Advisory
http://www.securityfocus.com/bid/34229
Patch
http://www.securitytracker.com/id?1021892
http://www.ivizsecurity.com/security-advisory-iviz-sr-09001.html
Patch