CVSS: 9.3EPSS: 97%CPEs: 50EXPL: 2CVE-2009-2990 – Adobe Reader / Acrobat - '.U3D' File Invalid Array Index Overflow
https://notcve.org/view.php?id=CVE-2009-2990
19 Oct 2009 — Array index error in Adobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 might allow attackers to execute arbitrary code via unspecified vectors. Error de indice en vector en Adobe Reader y Acrobat v9.x anteriores a v9.2, v8.x anteriores a v8.1.7 y posiblemente en v7.x anteriores a v7.1.4 podría permitir a atacantes ejecutar código de su elección mediante vectores no especificados. • https://www.exploit-db.com/exploits/9990 • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 1%CPEs: 50EXPL: 0CVE-2009-2996 – acroread: Multiple arbitrary code execution fixes in 8.1.7 (APSB09-15)
https://notcve.org/view.php?id=CVE-2009-2996
19 Oct 2009 — Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allow attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2009-2985. Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7, y v9.x anteriores a v9.2 permite a atacantes provocar una denegación de servicio (consumo de memoria) o posiblemente ejecutar código de su elección mediante vectores no especificados, si... • http://securitytracker.com/id?1023007 • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 61%CPEs: 50EXPL: 0CVE-2009-2998 – acroread: Multiple arbitrary code execution fixes in 8.1.7 (APSB09-15)
https://notcve.org/view.php?id=CVE-2009-2998
19 Oct 2009 — Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 do not properly validate input, which might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2009-3458. Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7, y v9.x anteriores a v9.2 no valida adecuadamente la entrada, permitiendo a atacantes ejecutar código de su elección mediante vectores no especificados, siendo una vulnerabilidad diferente que CVE-2009... • http://securitytracker.com/id?1023007 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 2%CPEs: 50EXPL: 0CVE-2009-2986 – acroread: Multiple arbitrary code execution fixes in 8.1.7 (APSB09-15)
https://notcve.org/view.php?id=CVE-2009-2986
19 Oct 2009 — Multiple heap-based buffer overflows in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 might allow attackers to execute arbitrary code via unspecified vectors. Múltiples desbordamientos de búfer basado en memoria dinámica (heap) en Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7 y v9.x anteriores a v9.2 podría permitir a atacantes ejecutar código de su elección mediante vectores no especificados. • http://securitytracker.com/id?1023007 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 1%CPEs: 24EXPL: 0CVE-2009-3460
https://notcve.org/view.php?id=CVE-2009-3460
19 Oct 2009 — Adobe Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors. Adobe Acrobat v9.x anteriores a v9.2, v8.x anteriores a v8.1.7, y posiblemente v7.x anteriores a v7.1.4 permite a los atacantes provocar una denegación de servicio (corrupción de memoria) o probablemente ejecutar código de su elección a través de vectores de ataque sin especificar. • http://securitytracker.com/id?1023007 • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 3%CPEs: 50EXPL: 1CVE-2009-2994 – Adobe Acrobat Reader 7 < 9 - U3D Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-2994
19 Oct 2009 — Buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 might allow attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7 y v9.x anteriores a v9.2 permite a atacantes ejecutar código de su elección a través de vectores de ataque sin especificar. • https://www.exploit-db.com/exploits/9865 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 96%CPEs: 78EXPL: 2CVE-2009-3459 – Adobe - FlateDecode Stream Predictor 02 Integer Overflow
https://notcve.org/view.php?id=CVE-2009-3459
13 Oct 2009 — Heap-based buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows remote attackers to execute arbitrary code via a crafted PDF file that triggers memory corruption, as exploited in the wild in October 2009. NOTE: some of these details are obtained from third party information. Un Desbordamiento de búfer en la región heap de la memoria en Adobe Reader y Acrobat versión 7.x anterior a versión 7.1.4, versión 8.x anterior a 8.1.7, y versión 9.x anterior a 9.2, ... • https://www.exploit-db.com/exploits/16546 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 6%CPEs: 50EXPL: 0CVE-2009-2985 – Adobe Reader Compact Font Format Malformed Index Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2009-2985
13 Oct 2009 — Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allow attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2009-2996. Adobe Reader y Acrobat v7.x anteriores a v7.1.4, v8.x anteriores a v8.1.7 y v9.x anteriores a v9.2 permite a atacantes provocar una denegación de servicio (consumo de memoria) o probablemente ejecutar código de su elección mediante vectores no especificados, si... • http://securitytracker.com/id?1023007 • CWE-399: Resource Management Errors •
CVSS: 8.1EPSS: 22%CPEs: 85EXPL: 2CVE-2009-3431 – Adobe Acrobat 9.1.3 - Stack Exhaustion Denial of Service
https://notcve.org/view.php?id=CVE-2009-3431
25 Sep 2009 — Stack consumption vulnerability in Adobe Reader and Acrobat 9.1.3, 9.1.2, 9.1.1, and earlier 9.x versions; 8.1.6 and earlier 8.x versions; and possibly 7.1.4 and earlier 7.x versions allows remote attackers to cause a denial of service (application crash) via a PDF file with a large number of [ (open square bracket) characters in the argument to the alert method. NOTE: some of these details are obtained from third party information. Una vulnerabilidad de consumo de pila en Reader y Acrobat de Adobe versione... • https://www.exploit-db.com/exploits/33017 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 64%CPEs: 4EXPL: 0CVE-2009-1862 – Adobe Acrobat and Reader, Flash Player Unspecified Vulnerability
https://notcve.org/view.php?id=CVE-2009-1862
23 Jul 2009 — Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9.x through 9.0.159.0 and 10.x through 10.0.22.87, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via (1) a crafted Flash application in a .pdf file or (2) a crafted .swf file, related to authplay.dll, as exploited in the wild in July 2009. Vulnerabilidad sin especificar en Adobe Reader , Acrobat de la v9.x a la v9.1.2 y Adobe Flash Player v9.x a la v9.0.159.0 y... • http://blogs.adobe.com/psirt/2009/07/potential_adobe_reader_and_fla.html • CWE-787: Out-of-bounds Write •