var-200912-0743
Vulnerability from variot

Integer overflow in the U3D implementation in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code via a malformed PDF document. An attacker can exploit this issue by supplying a malicious PDF file or webpage. Failed attempts will likely result in denial-of-service conditions. NOTE: This issue was previously covered in BID 37667 (Adobe Acrobat and Reader January 2010 Multiple Remote Vulnerabilities), but has been given its own record to better document it. The Adobe Reader browser plug-in is available for several web browsers and operating systems and will automatically open PDF documents on websites. They are used to create, view, search, digitally sign, verify, print, and collaborate on Adobe PDF files.

II.

III. AFFECTED PRODUCTS

Adobe Reader version 9.2 and prior Adobe Acrobat version 9.2 and prior

IV. Exploits - PoCs & Binary Analysis

In-depth binary analysis of the vulnerability and a code execution exploit have been released by VUPEN Security through the VUPEN Exploits & PoCs Service :

http://www.vupen.com/exploits

V. SOLUTION

Upgrade to version 9.3 or 8.2.

VI. CREDIT

The vulnerability was discovered by Nicolas JOLY of VUPEN Security

VII. ABOUT VUPEN Security

VUPEN is a leading IT security research company providing vulnerability management services to allow enterprises and organizations to eliminate vulnerabilities before they can be exploited, ensure security policy compliance and meaningfully measure and manage risks.

VUPEN also provides research services for security vendors (antivirus, IDS, IPS,etc) to supplement their internal vulnerability research efforts and quickly develop vulnerability-based and exploit-based signatures, rules, and filters, and proactively protect their customers against potential threats.

  • VUPEN Vulnerability Notification Service:

http://www.vupen.com/english/services

  • VUPEN Exploits and In-Depth Vulnerability Analysis:

http://www.vupen.com/exploits

VIII. REFERENCES

http://www.vupen.com/english/advisories/2010/0103 http://www.adobe.com/support/security/bulletins/apsb10-02.html

IX. DISCLOSURE TIMELINE

2009-11-06 - Vendor notified 2009-11-06 - Vendor response 2009-12-10 - Status update received 2010-01-07 - Status update received 2009-01-13 - Coordinated public Disclosure

. ----------------------------------------------------------------------

Do you have VARM strategy implemented?

(Vulnerability Assessment Remediation Management)

If not, then implement it through the most reliable vulnerability intelligence source on the market.

Implement it through Secunia.

For more information visit: http://secunia.com/advisories/business_solutions/

Alternatively request a call from a Secunia representative today to discuss how we can help you with our capabilities contact us at: sales@secunia.com


TITLE: Adobe Reader/Acrobat Code Execution Vulnerability

SECUNIA ADVISORY ID: SA37690

VERIFY ADVISORY: http://secunia.com/advisories/37690/

DESCRIPTION: A vulnerability has been reported in Adobe Reader and Acrobat, which can be exploited by malicious people to compromise a user's system.

NOTE: This vulnerability is currently being actively exploited.

The vulnerability is reported in versions 9.2 and prior.

SOLUTION: Do not open untrusted PDF files.

Do not visit untrusted websites or follow untrusted links.

PROVIDED AND/OR DISCOVERED BY: Reported as a 0-day.

ORIGINAL ADVISORY: http://blogs.adobe.com/psirt/2009/12/new_adobe_reader_and_acrobat_v.html


About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


Show details on source website


{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200912-0743",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "adobe",
        "version": "8.1"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "adobe",
        "version": "7.0.7"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "adobe",
        "version": "7.1.3"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "adobe",
        "version": "7.0.8"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "adobe",
        "version": "7.1.1"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "adobe",
        "version": "7.0.9"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "adobe",
        "version": "7.1.2"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "adobe",
        "version": "7.1.0"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "adobe",
        "version": "7.1.4"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.3,
        "vendor": "adobe",
        "version": "9.1.1"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.0.10"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "9.1.2"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.3"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0.3"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.0.6"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "3.01"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "4.0.5"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "4.0.5c"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "3.1"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0.2"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.3"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.0.5"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.0"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.0.7"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.1"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "9.1"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.9"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.5"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.1.2"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.7"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.0.10"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.3"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0.3"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.0.9"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "3.02"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.5"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.0.6"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.1"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "4.0.5c"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.7"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.0"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0.2"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.0.5"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0.4"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "9.1"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.5"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.2"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.7"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "9.1.1"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.1.1"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.1.0"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.2"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0.1"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.5"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.1"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "3.0"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.0"
      },
      {
        "model": "acrobat",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "9.2"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.0.11"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.4"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.6"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "4.0.5a"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.6"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.4"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "9.1.3"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0.6"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0.4"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.8"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.2"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "9.0"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "4.0"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.2"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0.1"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0.5"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.1.3"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.1"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "3.0"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "9.1.2"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "4.5"
      },
      {
        "model": "acrobat reader",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "9.2"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.4"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1.6"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "4.0.5a"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.6"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.4"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "9.1.3"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "4.0.5"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "5.0"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "9.0"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "8.1"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "4.0"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "7.0.1"
      },
      {
        "model": "acrobat reader",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "adobe",
        "version": "6.0.5"
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "adobe",
        "version": null
      },
      {
        "model": "acrobat",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "adobe",
        "version": "8.2"
      },
      {
        "model": "acrobat",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "adobe",
        "version": "9.3"
      },
      {
        "model": "reader",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "adobe",
        "version": "8.2"
      },
      {
        "model": "reader",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "adobe",
        "version": "9.3"
      },
      {
        "model": "enterprise linux extras",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "red hat",
        "version": "3 extras"
      },
      {
        "model": "enterprise linux extras",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "red hat",
        "version": "4 extras"
      },
      {
        "model": "enterprise linux extras",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "red hat",
        "version": "4.8.z extras"
      },
      {
        "model": "rhel desktop supplementary",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "red hat",
        "version": "5 (client)"
      },
      {
        "model": "rhel supplementary",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "red hat",
        "version": "5 (server)"
      },
      {
        "model": "rhel supplementary eus",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "red hat",
        "version": "5.4.z (server)"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "adobe",
        "version": "8.0.0"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.3"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.0"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.1.2"
      },
      {
        "model": "linux enterprise sp3",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "suse",
        "version": "10"
      },
      {
        "model": "enterprise linux supplementary server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "5"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.2"
      },
      {
        "model": "networks callpilot 1002rp",
        "scope": null,
        "trust": 0.3,
        "vendor": "nortel",
        "version": null
      },
      {
        "model": "desktop extras",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "4"
      },
      {
        "model": "desktop extras",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "3"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.1.3"
      },
      {
        "model": "acrobat professional",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.3"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.6"
      },
      {
        "model": "enterprise linux as extras",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "4"
      },
      {
        "model": "enterprise linux as extras",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "3"
      },
      {
        "model": "networks callpilot 1005r",
        "scope": null,
        "trust": 0.3,
        "vendor": "nortel",
        "version": null
      },
      {
        "model": "networks self-service peri application",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "0"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.4"
      },
      {
        "model": "opensuse",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "s u s e",
        "version": "11.1"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.0"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.2"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.1.2"
      },
      {
        "model": "acrobat standard",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.2"
      },
      {
        "model": "networks callpilot 600r",
        "scope": null,
        "trust": 0.3,
        "vendor": "nortel",
        "version": null
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.1"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.3"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.5"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.7"
      },
      {
        "model": "linux enterprise sp2",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "suse",
        "version": "10"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.0"
      },
      {
        "model": "acrobat",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.3"
      },
      {
        "model": "acrobat standard",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.3"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.2"
      },
      {
        "model": "reader",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.2"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.4"
      },
      {
        "model": "networks self-service speech server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "0"
      },
      {
        "model": "networks callpilot 200i",
        "scope": null,
        "trust": 0.3,
        "vendor": "nortel",
        "version": null
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.3"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.1"
      },
      {
        "model": "opensuse",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "s u s e",
        "version": "11.0"
      },
      {
        "model": "acrobat professional security updat",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.2"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.1"
      },
      {
        "model": "enterprise linux extras",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "4"
      },
      {
        "model": "enterprise linux extras",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "3"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9"
      },
      {
        "model": "enterprise linux desktop supplementary client",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "5"
      },
      {
        "model": "reader security updat",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.2"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.7"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.2"
      },
      {
        "model": "reader",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.3"
      },
      {
        "model": "networks self-service mps",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "5000"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.4"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.1.3"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.1.1"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.6"
      },
      {
        "model": "networks callpilot 703t",
        "scope": null,
        "trust": 0.3,
        "vendor": "nortel",
        "version": null
      },
      {
        "model": "linux enterprise desktop",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "suse",
        "version": "11"
      },
      {
        "model": "enterprise linux ws extras",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "4"
      },
      {
        "model": "enterprise linux ws extras",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "3"
      },
      {
        "model": "networks callpilot 201i",
        "scope": null,
        "trust": 0.3,
        "vendor": "nortel",
        "version": null
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.1"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.1"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.0"
      },
      {
        "model": "enterprise linux es extras",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "4"
      },
      {
        "model": "enterprise linux es extras",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "redhat",
        "version": "3"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.7"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.1.2"
      },
      {
        "model": "networks self-service mps",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "10000"
      },
      {
        "model": "acrobat",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.2"
      },
      {
        "model": "acrobat standard",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.2"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "9.1.3"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.6"
      },
      {
        "model": "opensuse",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "s u s e",
        "version": "11.2"
      },
      {
        "model": "reader",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.1"
      },
      {
        "model": "networks self-service media processing server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "nortel",
        "version": "0"
      },
      {
        "model": "acrobat professional",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.1.2"
      },
      {
        "model": "acrobat professional",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "adobe",
        "version": "8.2"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#508357"
      },
      {
        "db": "BID",
        "id": "37756"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001020"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201001-092"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-3959"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/a:adobe:acrobat",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/a:adobe:acrobat_reader",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/a:redhat:enterprise_linux",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/a:redhat:rhel_desktop_supplementary",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/a:redhat:rhel_supplementary",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/a:redhat:rhel_supplementary_eus",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001020"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Nicolas Joly",
    "sources": [
      {
        "db": "PACKETSTORM",
        "id": "85207"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201001-092"
      }
    ],
    "trust": 0.7
  },
  "cve": "CVE-2009-3959",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "CVE-2009-3959",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 1.9,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "VHN-41405",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2009-3959",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#508357",
            "trust": 0.8,
            "value": "65.84"
          },
          {
            "author": "NVD",
            "id": "CVE-2009-3959",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201001-092",
            "trust": 0.6,
            "value": "CRITICAL"
          },
          {
            "author": "VULHUB",
            "id": "VHN-41405",
            "trust": 0.1,
            "value": "HIGH"
          },
          {
            "author": "VULMON",
            "id": "CVE-2009-3959",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#508357"
      },
      {
        "db": "VULHUB",
        "id": "VHN-41405"
      },
      {
        "db": "VULMON",
        "id": "CVE-2009-3959"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001020"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201001-092"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-3959"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Integer overflow in the U3D implementation in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code via a malformed PDF document. \nAn attacker can exploit this issue by supplying a malicious PDF file or webpage. Failed attempts will likely result in denial-of-service conditions. \nNOTE: This issue was previously covered in BID 37667 (Adobe Acrobat and Reader January 2010 Multiple Remote Vulnerabilities), but has been given its own record to better document it. The Adobe Reader browser plug-in is available for several web browsers and operating systems and will automatically open PDF documents on websites. \nThey are used to create, view, search, digitally sign, verify, print, and\ncollaborate on Adobe PDF files. \n\n\nII. \n\n\nIII. AFFECTED PRODUCTS\n--------------------------------\n\nAdobe Reader version 9.2 and prior\nAdobe Acrobat version 9.2 and prior\n\n\nIV. Exploits - PoCs \u0026 Binary Analysis\n----------------------------------------\n\nIn-depth binary analysis of the vulnerability and a code execution\nexploit have been released by VUPEN Security through the\nVUPEN Exploits \u0026 PoCs Service :\n\nhttp://www.vupen.com/exploits\n\n\nV. SOLUTION\n---------------- \n\nUpgrade to version 9.3 or 8.2. \n\n\nVI. CREDIT\n-------------- \n\nThe vulnerability was discovered by Nicolas JOLY of VUPEN Security\n\n\nVII. ABOUT VUPEN Security\n---------------------------------\n\nVUPEN is a leading IT security research company providing vulnerability\nmanagement services to allow enterprises and organizations to eliminate\nvulnerabilities before they can be exploited, ensure security policy\ncompliance and meaningfully measure and manage risks. \n\nVUPEN also provides research services for security vendors (antivirus,\nIDS, IPS,etc) to supplement their internal vulnerability research efforts\nand quickly develop vulnerability-based and exploit-based signatures,\nrules, and filters, and proactively protect their customers against\npotential threats. \n\n* VUPEN Vulnerability Notification Service:\n\nhttp://www.vupen.com/english/services\n\n* VUPEN Exploits and In-Depth Vulnerability Analysis:\n\nhttp://www.vupen.com/exploits\n\n\nVIII. REFERENCES\n----------------------\n\nhttp://www.vupen.com/english/advisories/2010/0103\nhttp://www.adobe.com/support/security/bulletins/apsb10-02.html\n\n\nIX. DISCLOSURE TIMELINE\n----------------------------------- \n\n2009-11-06 - Vendor notified\n2009-11-06 - Vendor response\n2009-12-10 - Status update received\n2010-01-07 - Status update received\n2009-01-13 - Coordinated public Disclosure\n\n\n. ----------------------------------------------------------------------\n\nDo you have VARM strategy implemented?\n\n(Vulnerability Assessment Remediation Management)  \n\nIf not, then implement it through the most reliable vulnerability\nintelligence source on the market. \n\nImplement it through Secunia. \n\nFor more information visit:\nhttp://secunia.com/advisories/business_solutions/\n\nAlternatively request a call from a Secunia representative today to\ndiscuss how we can help you with our capabilities contact us at:\nsales@secunia.com\n\n----------------------------------------------------------------------\n\nTITLE:\nAdobe Reader/Acrobat Code Execution Vulnerability\n\nSECUNIA ADVISORY ID:\nSA37690\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/37690/\n\nDESCRIPTION:\nA vulnerability has been reported in Adobe Reader and Acrobat, which\ncan be exploited by malicious people to compromise a user\u0027s system. \n\nNOTE: This vulnerability is currently being actively exploited. \n\nThe vulnerability is reported in versions 9.2 and prior. \n\nSOLUTION:\nDo not open untrusted PDF files. \n\nDo not visit untrusted websites or follow untrusted links. \n\nPROVIDED AND/OR DISCOVERED BY:\nReported as a 0-day. \n\nORIGINAL ADVISORY:\nhttp://blogs.adobe.com/psirt/2009/12/new_adobe_reader_and_acrobat_v.html\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2009-3959"
      },
      {
        "db": "CERT/CC",
        "id": "VU#508357"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001020"
      },
      {
        "db": "BID",
        "id": "37756"
      },
      {
        "db": "VULHUB",
        "id": "VHN-41405"
      },
      {
        "db": "VULMON",
        "id": "CVE-2009-3959"
      },
      {
        "db": "PACKETSTORM",
        "id": "85207"
      },
      {
        "db": "PACKETSTORM",
        "id": "83870"
      }
    ],
    "trust": 2.97
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-41405",
        "trust": 0.1,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-41405"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2009-3959",
        "trust": 3.0
      },
      {
        "db": "VUPEN",
        "id": "ADV-2010-0103",
        "trust": 2.7
      },
      {
        "db": "SECTRACK",
        "id": "1023446",
        "trust": 2.6
      },
      {
        "db": "USCERT",
        "id": "TA10-013A",
        "trust": 2.6
      },
      {
        "db": "BID",
        "id": "37756",
        "trust": 2.3
      },
      {
        "db": "SECUNIA",
        "id": "38215",
        "trust": 1.2
      },
      {
        "db": "SECUNIA",
        "id": "38138",
        "trust": 1.2
      },
      {
        "db": "SECUNIA",
        "id": "37690",
        "trust": 0.9
      },
      {
        "db": "OSVDB",
        "id": "60980",
        "trust": 0.8
      },
      {
        "db": "CERT/CC",
        "id": "VU#508357",
        "trust": 0.8
      },
      {
        "db": "USCERT",
        "id": "SA10-013A",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001020",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201001-092",
        "trust": 0.7
      },
      {
        "db": "CERT/CC",
        "id": "TA10-013A",
        "trust": 0.6
      },
      {
        "db": "SUSE",
        "id": "SUSE-SA:2010:008",
        "trust": 0.6
      },
      {
        "db": "NSFOCUS",
        "id": "14342",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "85207",
        "trust": 0.2
      },
      {
        "db": "VULHUB",
        "id": "VHN-41405",
        "trust": 0.1
      },
      {
        "db": "VULMON",
        "id": "CVE-2009-3959",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "83870",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#508357"
      },
      {
        "db": "VULHUB",
        "id": "VHN-41405"
      },
      {
        "db": "VULMON",
        "id": "CVE-2009-3959"
      },
      {
        "db": "BID",
        "id": "37756"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001020"
      },
      {
        "db": "PACKETSTORM",
        "id": "85207"
      },
      {
        "db": "PACKETSTORM",
        "id": "83870"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201001-092"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-3959"
      }
    ]
  },
  "id": "VAR-200912-0743",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-41405"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2024-11-29T19:58:47.381000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "APSB10-02",
        "trust": 0.8,
        "url": "http://www.adobe.com/support/security/bulletins/apsb10-02.html"
      },
      {
        "title": "APSB10-02",
        "trust": 0.8,
        "url": "http://www.adobe.com/jp/support/security/bulletins/apsb10-02.html"
      },
      {
        "title": "RHSA-2010:0037",
        "trust": 0.8,
        "url": "https://rhn.redhat.com/errata/RHSA-2010-0037.html"
      },
      {
        "title": "RHSA-2010:0038",
        "trust": 0.8,
        "url": "https://rhn.redhat.com/errata/RHSA-2010-0038.html"
      },
      {
        "title": "RHSA-2010:0060",
        "trust": 0.8,
        "url": "https://rhn.redhat.com/errata/RHSA-2010-0060.html"
      },
      {
        "title": "TA10-013A",
        "trust": 0.8,
        "url": "http://software.fujitsu.com/jp/security/vulnerabilities/ta10-013a.html"
      },
      {
        "title": "Red Hat: Critical: acroread security and bug fix update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20100037 - Security Advisory"
      },
      {
        "title": "Red Hat: Critical: acroread security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20100038 - Security Advisory"
      },
      {
        "title": "Red Hat: Critical: acroread security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20100060 - Security Advisory"
      },
      {
        "title": "",
        "trust": 0.1,
        "url": "https://github.com/0xCyberY/CVE-T4PDF "
      }
    ],
    "sources": [
      {
        "db": "VULMON",
        "id": "CVE-2009-3959"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001020"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-189",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-41405"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001020"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-3959"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.7,
        "url": "http://www.vupen.com/english/advisories/2010/0103"
      },
      {
        "trust": 2.6,
        "url": "http://www.us-cert.gov/cas/techalerts/ta10-013a.html"
      },
      {
        "trust": 2.6,
        "url": "http://www.securitytracker.com/id?1023446"
      },
      {
        "trust": 2.2,
        "url": "http://www.adobe.com/support/security/bulletins/apsb10-02.html"
      },
      {
        "trust": 2.1,
        "url": "http://www.securityfocus.com/bid/37756"
      },
      {
        "trust": 1.8,
        "url": "http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00009.html"
      },
      {
        "trust": 1.7,
        "url": "http://blogs.adobe.com/psirt/2009/12/new_adobe_reader_and_acrobat_v.html"
      },
      {
        "trust": 1.2,
        "url": "http://www.securityfocus.com/archive/1/508949"
      },
      {
        "trust": 1.2,
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=554293"
      },
      {
        "trust": 1.2,
        "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a8539"
      },
      {
        "trust": 1.2,
        "url": "http://www.redhat.com/support/errata/rhsa-2010-0060.html"
      },
      {
        "trust": 1.2,
        "url": "http://secunia.com/advisories/38138"
      },
      {
        "trust": 1.2,
        "url": "http://secunia.com/advisories/38215"
      },
      {
        "trust": 1.2,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/55557"
      },
      {
        "trust": 0.9,
        "url": "http://secunia.com/advisories/37690/"
      },
      {
        "trust": 0.8,
        "url": "http://www.adobe.com/support/security/advisories/apsa09-07.html"
      },
      {
        "trust": 0.8,
        "url": "http://kb2.adobe.com/cps/532/cpsid_53237.html"
      },
      {
        "trust": 0.8,
        "url": "http://osvdb.org/show/osvdb/60980"
      },
      {
        "trust": 0.8,
        "url": "http://www.symantec.com/connect/blogs/zero-day-xmas-present"
      },
      {
        "trust": 0.8,
        "url": "http://voices.washingtonpost.com/securityfix/2009/12/hackers_target_unpatched_adobe.html"
      },
      {
        "trust": 0.8,
        "url": "http://vrt-sourcefire.blogspot.com/2009/12/this-is-what-happens-when-you-try-to-do.html"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3959"
      },
      {
        "trust": 0.8,
        "url": "http://www.ipa.go.jp/security/ciadr/vul/20100113-adobe.html"
      },
      {
        "trust": 0.8,
        "url": "http://www.jpcert.or.jp/at/2010/at100003.txt"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/cert/jvnta10-013a/"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/tr/jvntr-2010-03/"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2009-3959"
      },
      {
        "trust": 0.8,
        "url": "http://www.us-cert.gov/cas/alerts/sa10-013a.html"
      },
      {
        "trust": 0.8,
        "url": "http://www.npa.go.jp/cyberpolice/index.html#topics"
      },
      {
        "trust": 0.6,
        "url": "http://www.nsfocus.net/vulndb/14342"
      },
      {
        "trust": 0.3,
        "url": "http://www.adobe.com"
      },
      {
        "trust": 0.3,
        "url": "http://support.nortel.com/go/main.jsp?cscat=bltndetail\u0026id=991610"
      },
      {
        "trust": 0.3,
        "url": "/archive/1/508949"
      },
      {
        "trust": 0.1,
        "url": "https://cwe.mitre.org/data/definitions/189.html"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2010:0037"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      },
      {
        "trust": 0.1,
        "url": "http://www.vupen.com/english/research.php"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3959"
      },
      {
        "trust": 0.1,
        "url": "http://www.vupen.com/exploits"
      },
      {
        "trust": 0.1,
        "url": "http://www.vupen.com/english/services"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/business_solutions/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/about_secunia_advisories/"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#508357"
      },
      {
        "db": "VULHUB",
        "id": "VHN-41405"
      },
      {
        "db": "VULMON",
        "id": "CVE-2009-3959"
      },
      {
        "db": "BID",
        "id": "37756"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001020"
      },
      {
        "db": "PACKETSTORM",
        "id": "85207"
      },
      {
        "db": "PACKETSTORM",
        "id": "83870"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201001-092"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-3959"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#508357"
      },
      {
        "db": "VULHUB",
        "id": "VHN-41405"
      },
      {
        "db": "VULMON",
        "id": "CVE-2009-3959"
      },
      {
        "db": "BID",
        "id": "37756"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-001020"
      },
      {
        "db": "PACKETSTORM",
        "id": "85207"
      },
      {
        "db": "PACKETSTORM",
        "id": "83870"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201001-092"
      },
      {
        "db": "NVD",
        "id": "CVE-2009-3959"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2009-12-15T00:00:00",
        "db": "CERT/CC",
        "id": "VU#508357"
      },
      {
        "date": "2010-01-13T00:00:00",
        "db": "VULHUB",
        "id": "VHN-41405"
      },
      {
        "date": "2010-01-13T00:00:00",
        "db": "VULMON",
        "id": "CVE-2009-3959"
      },
      {
        "date": "2010-01-12T00:00:00",
        "db": "BID",
        "id": "37756"
      },
      {
        "date": "2010-02-10T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2010-001020"
      },
      {
        "date": "2010-01-16T01:01:58",
        "db": "PACKETSTORM",
        "id": "85207"
      },
      {
        "date": "2009-12-15T13:39:57",
        "db": "PACKETSTORM",
        "id": "83870"
      },
      {
        "date": "2010-01-13T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201001-092"
      },
      {
        "date": "2010-01-13T19:30:00.593000",
        "db": "NVD",
        "id": "CVE-2009-3959"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2010-06-18T00:00:00",
        "db": "CERT/CC",
        "id": "VU#508357"
      },
      {
        "date": "2018-10-30T00:00:00",
        "db": "VULHUB",
        "id": "VHN-41405"
      },
      {
        "date": "2018-10-30T00:00:00",
        "db": "VULMON",
        "id": "CVE-2009-3959"
      },
      {
        "date": "2010-02-01T21:31:00",
        "db": "BID",
        "id": "37756"
      },
      {
        "date": "2010-02-10T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2010-001020"
      },
      {
        "date": "2011-07-19T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201001-092"
      },
      {
        "date": "2024-11-21T01:08:36.613000",
        "db": "NVD",
        "id": "CVE-2009-3959"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201001-092"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Adobe Acrobat and Reader contain a use-after-free vulnerability in the JavaScript Doc.media.newPlayer method",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#508357"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "digital error",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201001-092"
      }
    ],
    "trust": 0.6
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.