CVSS: 9.8EPSS: 74%CPEs: 50EXPL: 0CVE-2009-2980 – acroread: Multiple arbitrary code execution fixes in 8.1.7 (APSB09-15)
https://notcve.org/view.php?id=CVE-2009-2980
19 Oct 2009 — Integer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors. Desbordamiento de entero en Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7 y v9.x anteriores a v9.2 permite a atacantes provocar una denegación de servicio o probablemente ejecutar código de su elección mediante vectores no especificados. • http://securitytracker.com/id?1023007 • CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 47%CPEs: 50EXPL: 0CVE-2009-2993 – acroread: Multiple arbitrary code execution fixes in 8.1.7 (APSB09-15)
https://notcve.org/view.php?id=CVE-2009-2993
19 Oct 2009 — The JavaScript for Acrobat API in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 does not properly implement the (1) Privileged Context and (2) Safe Path restrictions for unspecified JavaScript methods, which allows remote attackers to create arbitrary files, and possibly execute arbitrary code, via the cPath parameter in a crafted PDF file. NOTE: some of these details are obtained from third party information. JavaScript en la API de Acrobat de Adobe Reader y Acrobat v7.x a... • http://securitytracker.com/id?1023007 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 2%CPEs: 50EXPL: 0CVE-2009-2997 – acroread: Multiple arbitrary code execution fixes in 8.1.7 (APSB09-15)
https://notcve.org/view.php?id=CVE-2009-2997
19 Oct 2009 — Heap-based buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 might allow attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer basado en memoria dinámica (heap) en Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7, y v9.x anteriores a v9.2 permite a atacantes ejecutar código de su elección mediante vectores no especificados. • http://securitytracker.com/id?1023007 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 50EXPL: 0CVE-2009-2992
https://notcve.org/view.php?id=CVE-2009-2992
19 Oct 2009 — An unspecified ActiveX control in Adobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 does not properly validate input, which allows attackers to cause a denial of service via unknown vectors. Un control ActiveX no especificado en Adobe Reader y Acrobat v9.x anteriores a v9.2, v8.x anteriores a v8.1.7 y posiblemente en v7.x anteriores a v7.1.4 no validan adecuadamente la entrada, permitiendo a atacantes provocar una denegación de servicio mediante vectores no especifica... • http://securitytracker.com/id?1023007 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 97%CPEs: 50EXPL: 2CVE-2009-2990 – Adobe Reader / Acrobat - '.U3D' File Invalid Array Index Overflow
https://notcve.org/view.php?id=CVE-2009-2990
19 Oct 2009 — Array index error in Adobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 might allow attackers to execute arbitrary code via unspecified vectors. Error de indice en vector en Adobe Reader y Acrobat v9.x anteriores a v9.2, v8.x anteriores a v8.1.7 y posiblemente en v7.x anteriores a v7.1.4 podría permitir a atacantes ejecutar código de su elección mediante vectores no especificados. • https://www.exploit-db.com/exploits/9990 • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 1%CPEs: 50EXPL: 0CVE-2009-2996 – acroread: Multiple arbitrary code execution fixes in 8.1.7 (APSB09-15)
https://notcve.org/view.php?id=CVE-2009-2996
19 Oct 2009 — Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allow attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2009-2985. Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7, y v9.x anteriores a v9.2 permite a atacantes provocar una denegación de servicio (consumo de memoria) o posiblemente ejecutar código de su elección mediante vectores no especificados, si... • http://securitytracker.com/id?1023007 • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 61%CPEs: 50EXPL: 0CVE-2009-2998 – acroread: Multiple arbitrary code execution fixes in 8.1.7 (APSB09-15)
https://notcve.org/view.php?id=CVE-2009-2998
19 Oct 2009 — Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 do not properly validate input, which might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2009-3458. Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7, y v9.x anteriores a v9.2 no valida adecuadamente la entrada, permitiendo a atacantes ejecutar código de su elección mediante vectores no especificados, siendo una vulnerabilidad diferente que CVE-2009... • http://securitytracker.com/id?1023007 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 2%CPEs: 50EXPL: 0CVE-2009-2986 – acroread: Multiple arbitrary code execution fixes in 8.1.7 (APSB09-15)
https://notcve.org/view.php?id=CVE-2009-2986
19 Oct 2009 — Multiple heap-based buffer overflows in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 might allow attackers to execute arbitrary code via unspecified vectors. Múltiples desbordamientos de búfer basado en memoria dinámica (heap) en Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7 y v9.x anteriores a v9.2 podría permitir a atacantes ejecutar código de su elección mediante vectores no especificados. • http://securitytracker.com/id?1023007 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 3%CPEs: 50EXPL: 1CVE-2009-2994 – Adobe Acrobat Reader 7 < 9 - U3D Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-2994
19 Oct 2009 — Buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 might allow attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7 y v9.x anteriores a v9.2 permite a atacantes ejecutar código de su elección a través de vectores de ataque sin especificar. • https://www.exploit-db.com/exploits/9865 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 6%CPEs: 50EXPL: 0CVE-2009-2985 – Adobe Reader Compact Font Format Malformed Index Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2009-2985
13 Oct 2009 — Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allow attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2009-2996. Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7 y v9.x anteriores a v9.2 permite a atacantes provocar una denegación de servicio (consumo de memoria) o probablemente ejecutar código de su elección mediante vectores no especificados, si... • http://securitytracker.com/id?1023007 • CWE-399: Resource Management Errors •