Oval Definition:oval:org.mitre.oval:def:8255
Revision Date:2013-08-12Version:19
Title:Adobe Reader and Acrobat JpxDecode Memory Corruption Vulnerability
Description:Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code via a crafted JPC_MS_RGN marker in the Jp2c stream of a JpxDecode encoded data stream, which triggers an integer sign extension that bypasses a sanity check, leading to memory corruption.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-3955
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Adobe Acrobat
Adobe Reader
Definition Synopsis
  • Adobe Reader 8
  • Adobe Reader 8 Series is installed
  • AND Adobe Reader 8, the sub-version is vulnerable
  • Adobe Reader is less than 8.2.0
  • OR Adobe Reader library is less than 8.2.1
  • OR Adobe Reader 9
  • Adobe Reader 9 Series is installed
  • AND Adobe Reader 9, the sub-version is vulnerable
  • Adobe Reader is less than 9.3.0
  • OR Adobe Reader library is less than 9.3.1
  • OR Adobe Acrobat 8
  • Adobe Acrobat 8 Series is installed
  • AND Adobe Acrobat 8, the sub-version is vulnerable
  • Adobe Acrobat is less than 8.2.0
  • OR Adobe Acrobat library is less than 8.2.1
  • OR Adobe Acrobat 9
  • Adobe Acrobat 9 Series is installed
  • AND Adobe Acrobat 9, the sub-version is vulnerable
  • Adobe Acrobat is less than 9.3.0
  • OR Adobe Acrobat library is less than 9.3.1
    • BACK