CVE-2009-1862
Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9.x through 9.0.159.0 and 10.x through 10.0.22.87,...
Basic Information
- CVE State
- PUBLISHED
- Reserved Date
- June 01, 2009
- Published Date
- July 23, 2009
- Last Updated
- February 10, 2025
- Vendor
- n/a
- Product
- n/a
- Description
- Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9.x through 9.0.159.0 and 10.x through 10.0.22.87, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via (1) a crafted Flash application in a .pdf file or (2) a crafted .swf file, related to authplay.dll, as exploited in the wild in July 2009.
CVSS Scores
CVSS v3.1
7.8 - HIGH
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
SSVC Information
- Exploitation
- active
- Technical Impact
- total
Exploit Status
- Exploited in the Wild
- Yes (added 2022-06-08 00:00:00 UTC) Source
References
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1
http://www.kb.cert.org/vuls/id/259425
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-072209-2512-99
http://lists.apple.com/archives/security-announce/2009/Sep/msg00003.html
http://security.gentoo.org/glsa/glsa-200908-04.xml
http://support.apple.com/kb/HT3864
http://isc.sans.org/diary.html?storyid=6847
http://www.adobe.com/support/security/bulletins/apsb09-13.html
http://blogs.adobe.com/psirt/2009/07/potential_adobe_reader_and_fla.html
http://www.symantec.com/connect/blogs/next-generation-flash-vulnerability
http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html
http://bugs.adobe.com/jira/browse/FP-1265
http://www.adobe.com/support/security/bulletins/apsb09-10.html
http://secunia.com/advisories/36374
http://support.apple.com/kb/HT3865
http://secunia.com/advisories/36193
http://secunia.com/advisories/36701
http://www.adobe.com/support/security/advisories/apsa09-03.html
http://news.cnet.com/8301-27080_3-10293389-245.html
http://www.securityfocus.com/bid/35759
Known Exploited Vulnerability Information
| Source | Added Date |
|---|---|
| CISA | 2022-06-08 00:00:00 UTC |