This application requires Javascript for optimal performance.

Adobe Security Bulletin for October 2009


The table below lists the Adobe vulnerabilities for October.
Adobe Vulnerability Identifier Adobe Bulletin TitleSeverity Affected SoftwareCVE ID
apsb09-15Vulnerabilities could cause the application to crash and could potentially allow an attacker to take control of the affected system.Critical Adobe Reader 9.1.3 and earlier versions for Windows, Macintosh, and UNIX, Adobe Acrobat 9.1.3 and earlier versions for Windows and Macintosh CVE-2009-2979 CVE-2009-2980 CVE-2009-2984 CVE-2009-2985 CVE-2009-2987 CVE-2009-2988 CVE-2009-2989 CVE-2009-2990 CVE-2009-2991 CVE-2009-2992 CVE-2009-2993 CVE-2009-2994 CVE-2009-2995 CVE-2009-2996 CVE-2009-2997 CVE-2009-2998 CVE-2009-3458 CVE-2009-3460 CVE-2009-3459 CVE-2007-0048 CVE-2007-0045 CVE-2009-2564 CVE-2009-2981 CVE-2009-2982 CVE-2009-2983 CVE-2009-2986 CVE-2009-3431 CVE-2009-3461 CVE-2009-3462


Threat Remediation


Fortinet provides coverage on Adobe vulnerabilities in October 2009.

CVE NumberSignature Name
CVE-2009-2979Adobe.Reader.Metadata.XML.Buffer.Overflow
CVE-2009-2980Adobe.Reader.Xobject.Image.Integer.Overflow
CVE-2009-2985Adobe.Reader.Font.CFF.Index.Memory.Corruption
CVE-2009-2987Adobe.Acrobat.ActiveX.Control.DoS
CVE-2009-2988Adobe.Acrobat.JS.Collab.DoS
CVE-2009-2990Adobe.Reader.U3D.Progressive.Mesh.Block.Code.Execution
CVE-2009-2991Adobe.Acrobat.Firefox.Plugin.RCE.Code.Execution
CVE-2009-2994Adobe.JPEG2000.QCC.Memory.Corruption
CVE-2009-2996Adobe.Acrobat.JS.Collab.Memory.Corruption
CVE-2009-2997Adobe.Acrobat.U3D.Line.Set.Heap.Corruption
CVE-2009-2998Adobe.Reader.U3D.Mesh.Declaration.Memory.Corruption
CVE-2009-3458Adobe.Reader.U3D.Progressive.Mesh.Block.Code.Execution
CVE-2009-3460Adobe.Acrobat.Javascript.Heap.Allocation.Memory.Corruption
CVE-2009-3459Adobe.Reader.Decode.Color.Remote.Code.Execution
CVE-2007-0048Adobe.Acrobat.Plugin.DoS
CVE-2007-0045Adobe.Acrobat.Plugin.XSS
CVE-2009-2981Adobe.Trust.Manager.Restrictions.Bypass
CVE-2009-2983Adobe.Acrobat.COM.Objects.Memory.Corruption
CVE-2009-3431Adobe.Acrobat.Stack.Exhaustion.DoS

For more information on new and enhanced signatures, visit the IPS Service Update History. If you require more information, contact the FortiGuard Team using our Contact Us web page.


Document History


Revision DateVersion Number
Wednesday, October 14, 20091Initial Documentation.


Reference: