Back to search
CVE-2009-3459
Published: Oct 13, 2009
Modified: May 21, 2026
PUBLISHED
Description
Heap-based buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows remote attackers to execute arbitrary code via a crafted PDF file that triggers memory corruption, as exploited in the wild in October 2009. NOTE: some of these details are obtained from third party information.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
36983
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:6534
vdb-entry
signature
x_refsource_OVAL
TA09-286B
third-party-advisory
x_refsource_CERT
1023007
vdb-entry
x_refsource_SECTRACK
http://www.adobe.com/support/security/bulletins/apsb09-15.html
x_refsource_CONFIRM
20091009 Adobe Acrobat and Acrobat Reader Remote Code Execution
third-party-advisory
x_refsource_ISS
ADV-2009-2851
vdb-entry
x_refsource_VUPEN
http://isc.sans.org/diary.html?storyid=7300
x_refsource_MISC
http://blogs.adobe.com/psirt/2009/10/adobe_reader_and_acrobat_issue_1.html
x_refsource_CONFIRM
36600
vdb-entry
x_refsource_BID
ADV-2009-2898
vdb-entry
x_refsource_VUPEN
adobe-reader-pdf-code-execution(53691)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now