PT-2009-5332 · Adobe · Reader+1

Publicado

2009-10-19

Atualizado

2018-10-30

CVE-2009-2992

CVSS v2.0

4.3

Média

Vetor

AV:N/AC:M/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: Adobe Reader and Acrobat versions 7.x through 7.1.4 Adobe Reader and Acrobat versions 8.x through 8.1.6 Adobe Reader and Acrobat versions 9.x through 9.1

Description: The issue is related to an unspecified ActiveX control that does not properly validate input, allowing attackers to cause a denial of service via unknown vectors.

Recommendations: For Adobe Reader and Acrobat versions 7.x through 7.1.4, update to version 7.1.4 or later. For Adobe Reader and Acrobat versions 8.x through 8.1.6, update to version 8.1.7 or later. For Adobe Reader and Acrobat versions 9.x through 9.1, update to version 9.2 or later.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2009-2992

Produtos afetados

Acrobat

Reader

PT-2009-5332 · Adobe · Reader+1

CVE-2009-2992

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7