9.3

CVE-2009-3459

Heap-based buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows remote attackers to execute arbitrary code via a crafted PDF file that triggers memory corruption, as exploited in the wild in October 2009. NOTE: some of these details are obtained from third party information.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdobeAcrobat Version <= 9.1.3
AdobeAcrobat Version3.0
AdobeAcrobat Version3.1
AdobeAcrobat Version4.0
AdobeAcrobat Version4.0.5
AdobeAcrobat Version4.0.5a
AdobeAcrobat Version4.0.5c
AdobeAcrobat Version5.0
AdobeAcrobat Version5.0.5
AdobeAcrobat Version5.0.6
AdobeAcrobat Version5.0.10
AdobeAcrobat Version6.0
AdobeAcrobat Version6.0.1
AdobeAcrobat Version6.0.2
AdobeAcrobat Version6.0.3
AdobeAcrobat Version6.0.4
AdobeAcrobat Version6.0.5
AdobeAcrobat Version7.0
AdobeAcrobat Version7.0.1
AdobeAcrobat Version7.0.2
AdobeAcrobat Version7.0.3
AdobeAcrobat Version7.0.4
AdobeAcrobat Version7.0.5
AdobeAcrobat Version7.0.6
AdobeAcrobat Version7.0.7
AdobeAcrobat Version7.0.8
AdobeAcrobat Version7.0.9
AdobeAcrobat Version7.1.3
AdobeAcrobat Version8.0
AdobeAcrobat Version8.1
AdobeAcrobat Version8.1.1
AdobeAcrobat Version8.1.2
AdobeAcrobat Version8.1.3
AdobeAcrobat Version8.1.4
AdobeAcrobat Version8.1.6
AdobeAcrobat Version9
AdobeAcrobat Version9.0.0
AdobeAcrobat Version9.1
AdobeAcrobat Version9.1.1
AdobeAcrobat Version9.1.2
AdobeAcrobat Reader Version <= 9.0
AdobeReader Version3.0
AdobeReader Version4.0
AdobeReader Version4.0.5
AdobeReader Version4.0.5a
AdobeReader Version4.0.5c
AdobeReader Version4.5
AdobeReader Version5.0
AdobeReader Version5.0.5
AdobeReader Version5.0.6
AdobeReader Version5.0.7
AdobeReader Version5.0.9
AdobeReader Version5.0.10
AdobeReader Version5.0.11
AdobeReader Version5.1
AdobeReader Version6.0
AdobeReader Version6.0.1
AdobeReader Version6.0.2
AdobeReader Version6.0.3
AdobeReader Version6.0.4
AdobeReader Version6.0.5
AdobeReader Version7.0.1
AdobeReader Version7.0.2
AdobeReader Version7.0.3
AdobeReader Version7.0.5
AdobeReader Version7.0.7
AdobeReader Version7.0.8
AdobeReader Version7.0.9
AdobeReader Version7.1.0
AdobeReader Version7.1.1
AdobeReader Version7.1.3
AdobeReader Version8.1.1
AdobeReader Version8.1.2
AdobeReader Version8.1.4
AdobeReader Version8.1.6
AdobeReader Version9.0
AdobeReader Version9.1
AdobeReader Version9.1.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 88.36% 0.995
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.