← Volver a CVEs
CVE-2009-1862
HIGHCISA KEV7.8
Descripcion
Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9.x through 9.0.159.0 and 10.x through 10.0.22.87, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via (1) a crafted Flash application in a .pdf file or (2) a crafted .swf file, related to authplay.dll, as exploited in the wild in July 2009.
Detalles CVE
Puntuacion CVSS v3.17.8
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vector de ataqueLOCAL
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioREQUIRED
Publicado7/23/2009
Ultima modificacion10/22/2025
Fuentekev
Avistamientos honeypot0
CISA KEV
VendedorAdobe
ProductoAcrobat and Reader, Flash Player
Nombre vulnerabilidadAdobe Acrobat and Reader, Flash Player Unspecified Vulnerability
Fecha inclusion KEV2022-06-08
Fecha limite remediacion2022-06-22
Uso en ransomwareUnknown
Productos afectados
adobe:acrobatadobe:acrobat_readeradobe:flash_player
Debilidades (CWE)
CWE-787CWE-787
Referencias
http://bugs.adobe.com/jira/browse/FP-1265(cve@mitre.org)
http://isc.sans.org/diary.html?storyid=6847(cve@mitre.org)
http://news.cnet.com/8301-27080_3-10293389-245.html(cve@mitre.org)
http://secunia.com/advisories/36193(cve@mitre.org)
http://secunia.com/advisories/36374(cve@mitre.org)
http://secunia.com/advisories/36701(cve@mitre.org)
http://security.gentoo.org/glsa/glsa-200908-04.xml(cve@mitre.org)
http://support.apple.com/kb/HT3864(cve@mitre.org)
http://support.apple.com/kb/HT3865(cve@mitre.org)
http://www.kb.cert.org/vuls/id/259425(cve@mitre.org)
http://www.securityfocus.com/bid/35759(cve@mitre.org)
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-072209-2512-99(cve@mitre.org)
http://blogs.adobe.com/psirt/2009/07/potential_adobe_reader_and_fla.html(af854a3a-2127-422b-91ae-364da2661108)
http://bugs.adobe.com/jira/browse/FP-1265(af854a3a-2127-422b-91ae-364da2661108)
http://isc.sans.org/diary.html?storyid=6847(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/Sep/msg00003.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html(af854a3a-2127-422b-91ae-364da2661108)
http://news.cnet.com/8301-27080_3-10293389-245.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36193(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36374(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36701(af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-200908-04.xml(af854a3a-2127-422b-91ae-364da2661108)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3864(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3865(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/advisories/apsa09-03.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/bulletins/apsb09-10.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/bulletins/apsb09-13.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.kb.cert.org/vuls/id/259425(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/35759(af854a3a-2127-422b-91ae-364da2661108)
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-072209-2512-99(af854a3a-2127-422b-91ae-364da2661108)
http://www.symantec.com/connect/blogs/next-generation-flash-vulnerability(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2009-1862(134c704f-9b21-4f2e-91b3-4a467353bcc0)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.