9.3
CVSSv2

CVE-2009-1857

Published: 11/06/2009 Updated: 10/10/2018
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

Adobe Reader 7 and Acrobat 7 prior to 7.1.3, Adobe Reader 8 and Acrobat 8 prior to 8.1.6, and Adobe Reader 9 and Acrobat 9 prior to 9.1.2 allow attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a PDF document with a crafted TrueType font.

Vulnerability Trend

Affected Products

Vendor Product Versions
AdobeAcrobat7.0, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.0.5, 7.0.6, 7.0.7, 7.0.8, 7.0.9, 7.1, 7.1.0, 7.1.1, 8.0, 8.1, 8.1.1, 8.1.2, 8.1.3, 8.1.4, 9, 9.0, 9.0.0, 9.1
AdobeAcrobat Reader7.0, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.0.5, 7.0.6, 7.0.7, 7.0.8, 7.0.9, 7.1, 7.1.1, 8.0, 8.1, 8.1.1, 8.1.2, 8.1.3, 8.1.4, 8.1.5, 9, 9.1, 9.1.1

Vendor Advisories

Synopsis Critical: acroread security update Type/Severity Security Advisory: Critical Topic Updated acroread packages that fix multiple security issues are nowavailable for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4Extras, and Red Hat Enterprise Linux 5 SupplementaryThis update has been ...