← Retour aux CVEs
CVE-2009-1862
HIGHCISA KEV7.8
Description
Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9.x through 9.0.159.0 and 10.x through 10.0.22.87, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via (1) a crafted Flash application in a .pdf file or (2) a crafted .swf file, related to authplay.dll, as exploited in the wild in July 2009.
Details CVE
Score CVSS v3.17.8
SeveriteHIGH
Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vecteur d'attaqueLOCAL
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurREQUIRED
Publie7/23/2009
Derniere modification10/22/2025
Sourcekev
Observations honeypot0
CISA KEV
FournisseurAdobe
ProduitAcrobat and Reader, Flash Player
Nom vulnerabiliteAdobe Acrobat and Reader, Flash Player Unspecified Vulnerability
Date ajout KEV2022-06-08
Date limite remediation2022-06-22
Utilise dans ransomwareUnknown
Produits affectes
adobe:acrobatadobe:acrobat_readeradobe:flash_player
Faiblesses (CWE)
CWE-787CWE-787
References
http://bugs.adobe.com/jira/browse/FP-1265(cve@mitre.org)
http://isc.sans.org/diary.html?storyid=6847(cve@mitre.org)
http://news.cnet.com/8301-27080_3-10293389-245.html(cve@mitre.org)
http://secunia.com/advisories/36193(cve@mitre.org)
http://secunia.com/advisories/36374(cve@mitre.org)
http://secunia.com/advisories/36701(cve@mitre.org)
http://security.gentoo.org/glsa/glsa-200908-04.xml(cve@mitre.org)
http://support.apple.com/kb/HT3864(cve@mitre.org)
http://support.apple.com/kb/HT3865(cve@mitre.org)
http://www.kb.cert.org/vuls/id/259425(cve@mitre.org)
http://www.securityfocus.com/bid/35759(cve@mitre.org)
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-072209-2512-99(cve@mitre.org)
http://blogs.adobe.com/psirt/2009/07/potential_adobe_reader_and_fla.html(af854a3a-2127-422b-91ae-364da2661108)
http://bugs.adobe.com/jira/browse/FP-1265(af854a3a-2127-422b-91ae-364da2661108)
http://isc.sans.org/diary.html?storyid=6847(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/Sep/msg00003.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html(af854a3a-2127-422b-91ae-364da2661108)
http://news.cnet.com/8301-27080_3-10293389-245.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36193(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36374(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36701(af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-200908-04.xml(af854a3a-2127-422b-91ae-364da2661108)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3864(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3865(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/advisories/apsa09-03.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/bulletins/apsb09-10.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/bulletins/apsb09-13.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.kb.cert.org/vuls/id/259425(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/35759(af854a3a-2127-422b-91ae-364da2661108)
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-072209-2512-99(af854a3a-2127-422b-91ae-364da2661108)
http://www.symantec.com/connect/blogs/next-generation-flash-vulnerability(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2009-1862(134c704f-9b21-4f2e-91b3-4a467353bcc0)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.