Description
Buffer overflow in Adobe Reader 9.0 and earlier, and Acrobat 9.0 and earlier, allows remote attackers to execute arbitrary code via a crafted PDF document, related to a non-JavaScript function call and possibly an embedded JBIG2 image stream, as exploited in the wild in February 2009 by Trojan.Pidief.E.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- Adobe / acrobat7.0 – 7.1.1
- Adobe / acrobat9.0 – 9.0
- Adobe / Acrobat Reader7.0 – 7.1.1
- Adobe / Acrobat Reader9.0 – 9.0
References
- MISChttp://www.shadowserver.org/wiki/pmwiki.php?n=Calendar.20090219
- VENDOR_ADVISORYhttp://secunia.com/advisories/34790
- VENDOR_ADVISORYhttp://www.adobe.com/support/security/bulletins/apsb09-04.html
- EXPLOIThttps://www.exploit-db.com/exploits/8099
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5697
- MISChttp://isc.sans.org/diary.html?n&storyid=5902
- MISChttp://www.us-cert.gov/cas/techalerts/TA09-051A.html
- VENDOR_ADVISORYhttp://www.adobe.com/support/security/advisories/apsa09-01.html
- MISChttp://osvdb.org/52073
- VENDOR_ADVISORYhttp://secunia.com/advisories/34490
- VENDOR_ADVISORYhttp://secunia.com/advisories/33901
- MISChttp://www.redhat.com/support/errata/RHSA-2009-0376.html
- MISChttp://www.symantec.com/security_response/writeup.jsp?docid=2009-021212-5523-99&tabid=2
- VENDOR_ADVISORYhttp://secunia.com/advisories/34392
- MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2009-03/msg00005.html
- VENDOR_ADVISORYhttp://secunia.com/advisories/34706
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/0472
- MISChttp://www.kb.cert.org/vuls/id/905281
- MISChttp://sunsolve.sun.com/search/document.do?assetkey=1-66-256788-1
- MISChttp://www.securityfocus.com/bid/33751
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/48825
- MISChttp://www.securitytracker.com/id?1021739
- EXPLOIThttps://www.exploit-db.com/exploits/8090
- MISChttp://security.gentoo.org/glsa/glsa-200904-17.xml
- MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/1019