← Zuruck zu CVEs
CVE-2009-1862
HIGHCISA KEV7.8
Beschreibung
Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9.x through 9.0.159.0 and 10.x through 10.0.22.87, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via (1) a crafted Flash application in a .pdf file or (2) a crafted .swf file, related to authplay.dll, as exploited in the wild in July 2009.
CVE Details
CVSS v3.1 Bewertung7.8
SchweregradHIGH
CVSS VektorCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AngriffsvektorLOCAL
KomplexitatLOW
Erforderliche PrivilegienNONE
BenutzerinteraktionREQUIRED
Veroffentlicht7/23/2009
Zuletzt geandert10/22/2025
Quellekev
Honeypot-Sichtungen0
CISA KEV
HerstellerAdobe
ProduktAcrobat and Reader, Flash Player
SchwachstellennameAdobe Acrobat and Reader, Flash Player Unspecified Vulnerability
KEV Aufnahmedatum2022-06-08
Behebungsfrist2022-06-22
Ransomware-NutzungUnknown
Betroffene Produkte
adobe:acrobatadobe:acrobat_readeradobe:flash_player
Schwachen (CWE)
CWE-787CWE-787
Referenzen
http://bugs.adobe.com/jira/browse/FP-1265(cve@mitre.org)
http://isc.sans.org/diary.html?storyid=6847(cve@mitre.org)
http://news.cnet.com/8301-27080_3-10293389-245.html(cve@mitre.org)
http://secunia.com/advisories/36193(cve@mitre.org)
http://secunia.com/advisories/36374(cve@mitre.org)
http://secunia.com/advisories/36701(cve@mitre.org)
http://security.gentoo.org/glsa/glsa-200908-04.xml(cve@mitre.org)
http://support.apple.com/kb/HT3864(cve@mitre.org)
http://support.apple.com/kb/HT3865(cve@mitre.org)
http://www.kb.cert.org/vuls/id/259425(cve@mitre.org)
http://www.securityfocus.com/bid/35759(cve@mitre.org)
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-072209-2512-99(cve@mitre.org)
http://blogs.adobe.com/psirt/2009/07/potential_adobe_reader_and_fla.html(af854a3a-2127-422b-91ae-364da2661108)
http://bugs.adobe.com/jira/browse/FP-1265(af854a3a-2127-422b-91ae-364da2661108)
http://isc.sans.org/diary.html?storyid=6847(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/Sep/msg00003.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html(af854a3a-2127-422b-91ae-364da2661108)
http://news.cnet.com/8301-27080_3-10293389-245.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36193(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36374(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36701(af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-200908-04.xml(af854a3a-2127-422b-91ae-364da2661108)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3864(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3865(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/advisories/apsa09-03.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/bulletins/apsb09-10.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/bulletins/apsb09-13.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.kb.cert.org/vuls/id/259425(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/35759(af854a3a-2127-422b-91ae-364da2661108)
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-072209-2512-99(af854a3a-2127-422b-91ae-364da2661108)
http://www.symantec.com/connect/blogs/next-generation-flash-vulnerability(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2009-1862(134c704f-9b21-4f2e-91b3-4a467353bcc0)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.