9.3

CVE-2009-1855

Stack-based buffer overflow in Adobe Reader 7 and Acrobat 7 before 7.1.3, Adobe Reader 8 and Acrobat 8 before 8.1.6, and Adobe Reader 9 and Acrobat 9 before 9.1.2 might allow attackers to execute arbitrary code via a PDF file containing a malformed U3D model file with a crafted extension block.

Data is provided by the National Vulnerability Database (NVD)
AdobeAcrobat Version7.0
AdobeAcrobat Version7.0 Editionprofessional
AdobeAcrobat Version7.0 Editionstandard
AdobeAcrobat Version7.0.1
AdobeAcrobat Version7.0.1 Editionprofessional
AdobeAcrobat Version7.0.1 Editionstandard
AdobeAcrobat Version7.0.2
AdobeAcrobat Version7.0.2 Editionprofessional
AdobeAcrobat Version7.0.2 Editionstandard
AdobeAcrobat Version7.0.3
AdobeAcrobat Version7.0.3 Editionprofessional
AdobeAcrobat Version7.0.3 Editionstandard
AdobeAcrobat Version7.0.4
AdobeAcrobat Version7.0.4 Editionprofessional
AdobeAcrobat Version7.0.4 Editionstandard
AdobeAcrobat Version7.0.5
AdobeAcrobat Version7.0.5 Editionprofessional
AdobeAcrobat Version7.0.5 Editionstandard
AdobeAcrobat Version7.0.6
AdobeAcrobat Version7.0.6 Editionprofessional
AdobeAcrobat Version7.0.6 Editionstandard
AdobeAcrobat Version7.0.7
AdobeAcrobat Version7.0.7 Editionprofessional
AdobeAcrobat Version7.0.7 Editionstandard
AdobeAcrobat Version7.0.8
AdobeAcrobat Version7.0.8 Editionelements
AdobeAcrobat Version7.0.8 Editionprofessional
AdobeAcrobat Version7.0.8 Editionstandard
AdobeAcrobat Version7.0.9
AdobeAcrobat Version7.0.9 Editionprofessional
AdobeAcrobat Version7.1
AdobeAcrobat Version7.1 Editionprofessional
AdobeAcrobat Version7.1 Editionstandard
AdobeAcrobat Version7.1.0
AdobeAcrobat Version7.1.1
AdobeAcrobat Version7.1.1 Editionstandard
AdobeAcrobat Version8.0
AdobeAcrobat Version8.0 Editionprofessional
AdobeAcrobat Version8.0 Editionstandard
AdobeAcrobat Version8.1
AdobeAcrobat Version8.1 Editionstandard
AdobeAcrobat Version8.1.1
AdobeAcrobat Version8.1.1 Editionprofessional
AdobeAcrobat Version8.1.1 Editionstandard
AdobeAcrobat Version8.1.2
AdobeAcrobat Version8.1.2 Editionprofessional
AdobeAcrobat Version8.1.2 Editionstandard
AdobeAcrobat Version8.1.2 Updatesecurity_update Editionprofessional
AdobeAcrobat Version8.1.3
AdobeAcrobat Version8.1.3 Editionprofessional
AdobeAcrobat Version8.1.3 Editionstandard
AdobeAcrobat Version8.1.4
AdobeAcrobat Version8.1.4 Editionprofessional
AdobeAcrobat Version8.1.4 Editionstandard
AdobeAcrobat Version9
AdobeAcrobat Version9.0
AdobeAcrobat Version9.0 Editionstandard
AdobeAcrobat Version9.0.0
AdobeAcrobat Version9.1
AdobeAcrobat Version9.1 Editionstandard
AdobeAcrobat Reader Version7.0
AdobeAcrobat Reader Version7.0.1
AdobeAcrobat Reader Version7.0.2
AdobeAcrobat Reader Version7.0.3
AdobeAcrobat Reader Version7.0.4
AdobeAcrobat Reader Version7.0.5
AdobeAcrobat Reader Version7.0.6
AdobeAcrobat Reader Version7.0.7
AdobeAcrobat Reader Version7.0.8
AdobeAcrobat Reader Version7.0.9
AdobeAcrobat Reader Version7.1
AdobeAcrobat Reader Version7.1.1
AdobeAcrobat Reader Version8.0
AdobeAcrobat Reader Version8.1
AdobeAcrobat Reader Version8.1.1
AdobeAcrobat Reader Version8.1.2
AdobeAcrobat Reader Version8.1.2 Updatesecurity_update
AdobeAcrobat Reader Version8.1.3
AdobeAcrobat Reader Version8.1.4
AdobeAcrobat Reader Version8.1.5
AdobeAcrobat Reader Version9
AdobeAcrobat Reader Version9.1
AdobeAcrobat Reader Version9.1.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 29.24% 0.961
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.