|
|
|||
| Rule General Information |
|---|
| Release Date: | 2015-07-17 | |
| Rule Name: | FILE-OTHER Adobe Acrobat and Adobe Reader Deflate Parameter Integer Overflow Vulnerability -1 (CVE-2009-3459) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Heap-based buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows remote attackers to execute arbitrary code via a crafted PDF file that triggers memory corruption, as exploited in the wild in October 2009. | |
| Impact: | An attacker can exploit the affected software with a integer overflow vulnerability. Successful exploit leads to execute arbitrary code, and failed exploit may disturb the software logic and cause denial of service. | |
| Affected OS: | Windows, Linux | |
| Reference: | http://blogs.adobe.com/psirt/2009/10/adobe_reader_and_acrobat_issue_1.html AdobeSecurityBulletins:apsb09-15 SecurityFocusBID:36600 |
|
| Solutions |
|---|
| Adobe has issued a fix on the official website. For more advisory, please visit http://www.adobe.com/support/security/bulletins/apsb09-15.html |