Published: 20/02/2009 Updated: 27/09/2019

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 945

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Buffer overflow in Adobe Reader 9.0 and previous versions, and Acrobat 9.0 and previous versions, allows remote malicious users to execute arbitrary code via a crafted PDF document, related to a non-JavaScript function call and possibly an embedded JBIG2 image stream, as exploited in the wild in February 2009 by Trojan.Pidief.E.

Vulnerable Product	Search on Vulmon	Subscribe to Product
adobe acrobat
adobe acrobat 9.0
adobe acrobat reader
adobe acrobat reader 9.0

Synopsis Critical: acroread security update Type/Severity Security Advisory: Critical Topic Updated acroread packages that fix multiple security issues are nowavailable for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4Extras, and Red Hat Enterprise Linux 5 SupplementaryThis update has been ...

## # $Id: adobe_jbig2decoderb 10477 2010-09-25 11:59:02Z mc $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' require ...

## # $Id: adobe_jbig2decoderb 9525 2010-06-15 07:18:08Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' requi ...

#!/usr/bin/perl # k`sOSe 02/22/2009 # vrt-sourcefireblogspotcom/2009/02/have-nice-weekend-pdf-lovehtml my $size = "\x40\x00"; my $factor = "ABCD"; my $data = "A" x 8314; print pdf(); sub pdf() { "%PDF-15\n" "%\xec\xf5\xf2\xe1\xe4\xef\xe3\xf5\xed\xe5\xee\xf4\n" "3 0 \n" "xref\n" "3 16\n" "0000000023 00000 n \n" "00 ...

CWE-119 http://isc.sans.org/diary.html?n&storyid=5902 http://www.symantec.com/security_response/writeup.jsp?docid=2009-021212-5523-99&tabid=2 http://www.shadowserver.org/wiki/pmwiki.php?n=Calendar.20090219 http://www.adobe.com/support/security/advisories/apsa09-01.html http://www.securityfocus.com/bid/33751 http://secunia.com/advisories/33901 http://www.kb.cert.org/vuls/id/905281 http://osvdb.org/52073 http://www.securitytracker.com/id?1021739 http://www.us-cert.gov/cas/techalerts/TA09-051A.html http://www.adobe.com/support/security/bulletins/apsb09-04.html http://www.redhat.com/support/errata/RHSA-2009-0376.html http://secunia.com/advisories/34392 http://secunia.com/advisories/34490 http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00005.html http://sunsolve.sun.com/search/document.do?assetkey=1-66-256788-1 http://secunia.com/advisories/34706 http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html http://secunia.com/advisories/34790 http://www.vupen.com/english/advisories/2009/1019 http://security.gentoo.org/glsa/glsa-200904-17.xml http://www.vupen.com/english/advisories/2009/0472 https://exchange.xforce.ibmcloud.com/vulnerabilities/48825 https://www.exploit-db.com/exploits/8099 https://www.exploit-db.com/exploits/8090 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5697 https://access.redhat.com/errata/RHSA-2009:0376 https://nvd.nist.gov https://www.exploit-db.com/exploits/16672/https://www.kb.cert.org/vuls/id/905281

CVE-2009-0658

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect