[Forgot Password]
Login  Register Subscribe

24003

 
 

131573

 
 

108741

 
 

909

 
 

85475

 
 

134

Paid content will be excluded from the download.


Download | Alert*
OVAL

Denial of service vulnerability in customDictionaryOpen spell method in Adobe Reader (Linux)

ID: oval:org.secpod.oval:def:18635Date: (C)2014-05-26   (M)2018-05-07
Class: VULNERABILITYFamily: unix




The host is installed with Adobe Reader before 8.1.5 or Adobe Reader 9 before 9.1.1 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a PDF file that triggers a call to this method with a long string in the second argument. Successful exploitation allow attackers to crash the service or execute arbitrary code.

Platform:
Linux
Product:
Adobe Reader
Reference:
CVE-2009-1493
CVE    1
CVE-2009-1493
CPE    2
cpe:/a:adobe:reader:::x86
cpe:/a:adobe:reader:9::x86

© SecPod Technologies