← Voltar para CVEs
CVE-2009-1862
HIGHCISA KEV7.8
Descricao
Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9.x through 9.0.159.0 and 10.x through 10.0.22.87, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via (1) a crafted Flash application in a .pdf file or (2) a crafted .swf file, related to authplay.dll, as exploited in the wild in July 2009.
Detalhes CVE
Pontuacao CVSS v3.17.8
SeveridadeHIGH
Vetor CVSSCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vetor de ataqueLOCAL
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioREQUIRED
Publicado7/23/2009
Ultima modificacao10/22/2025
Fontekev
Avistamentos honeypot0
CISA KEV
FornecedorAdobe
ProdutoAcrobat and Reader, Flash Player
Nome da vulnerabilidadeAdobe Acrobat and Reader, Flash Player Unspecified Vulnerability
Data inclusao KEV2022-06-08
Prazo de remediacao2022-06-22
Uso em ransomwareUnknown
Produtos afetados
adobe:acrobatadobe:acrobat_readeradobe:flash_player
Fraquezas (CWE)
CWE-787CWE-787
Referencias
http://bugs.adobe.com/jira/browse/FP-1265(cve@mitre.org)
http://isc.sans.org/diary.html?storyid=6847(cve@mitre.org)
http://news.cnet.com/8301-27080_3-10293389-245.html(cve@mitre.org)
http://secunia.com/advisories/36193(cve@mitre.org)
http://secunia.com/advisories/36374(cve@mitre.org)
http://secunia.com/advisories/36701(cve@mitre.org)
http://security.gentoo.org/glsa/glsa-200908-04.xml(cve@mitre.org)
http://support.apple.com/kb/HT3864(cve@mitre.org)
http://support.apple.com/kb/HT3865(cve@mitre.org)
http://www.kb.cert.org/vuls/id/259425(cve@mitre.org)
http://www.securityfocus.com/bid/35759(cve@mitre.org)
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-072209-2512-99(cve@mitre.org)
http://blogs.adobe.com/psirt/2009/07/potential_adobe_reader_and_fla.html(af854a3a-2127-422b-91ae-364da2661108)
http://bugs.adobe.com/jira/browse/FP-1265(af854a3a-2127-422b-91ae-364da2661108)
http://isc.sans.org/diary.html?storyid=6847(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/Sep/msg00003.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html(af854a3a-2127-422b-91ae-364da2661108)
http://news.cnet.com/8301-27080_3-10293389-245.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36193(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36374(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36701(af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-200908-04.xml(af854a3a-2127-422b-91ae-364da2661108)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3864(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3865(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/advisories/apsa09-03.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/bulletins/apsb09-10.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/bulletins/apsb09-13.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.kb.cert.org/vuls/id/259425(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/35759(af854a3a-2127-422b-91ae-364da2661108)
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-072209-2512-99(af854a3a-2127-422b-91ae-364da2661108)
http://www.symantec.com/connect/blogs/next-generation-flash-vulnerability(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2009-1862(134c704f-9b21-4f2e-91b3-4a467353bcc0)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.