[Forgot Password]
Login  Register Subscribe

23631

 
 

122183

 
 

98060

 
 

909

 
 

79198

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

Denial of service vulnerability in customDictionaryOpen spell method in Adobe Reader (Linux)

ID: oval:org.secpod.oval:def:18635Date: (C)2014-05-26   (M)2017-10-04
Class: VULNERABILITYFamily: unix




The host is installed with Adobe Reader before 8.1.5 or Adobe Reader 9 before 9.1.1 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a PDF file that triggers a call to this method with a long string in the second argument. Successful exploitation allow attackers to crash the service or execute arbitrary code.

Platform:
Linux
Product:
Adobe Reader
Reference:
CVE-2009-1493
CVE    1
CVE-2009-1493
CPE    2
cpe:/a:adobe:reader:9::x86
cpe:/a:adobe:reader:::x86

© 2013 SecPod Technologies