Release DateOct 15, 2009 |
Severityhigh |
ImpactSystem Compromise. |
DescriptionThis indicates an attempt to exploit a memory corruption vulnerability in Adobe Reader and Acrobat.The vulnerability is caused by an error that occurs when the vulnerable software handles specially crafted COM objects. It allows a remote attacker to execute arbitrary code. |
Affected ProductsAdobe Reader version 9.1.3 and previous versionsAdobe Reader version 8.1.6 and previous versions Adobe Reader version 7.1.3 and previous versions Adobe Acrobat version 9.1.3 and previous versions Adobe Acrobat version 8.1.6 and previous versions Adobe Acrobat version 7.1.3 and previous versions |
Recommended ActionsUpgrade to Adobe Acrobat and Reader versions 9.2, 8.1.7, or 7.1.4:http://www.adobe.com/go/gntray_prod_acrobat_family_home |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2009-2983 |
Reference/shttp://www.frsirt.com/english/advisories/2009/2898 (FrSIRT)http://www.securityfocus.com/bid/36668 (BugTraq) |
