Oval Definition:oval:org.opensuse.security:def:20092993
Revision Date:2015-11-16Version:1
Title:CVE-2009-2993
Description:
The JavaScript for Acrobat API in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 does not properly implement the (1) Privileged Context and (2) Safe Path restrictions for unspecified JavaScript methods, which allows remote attackers to create arbitrary files, and possibly execute arbitrary code, via the cPath parameter in a crafted PDF file. NOTE: some of these details are obtained from third party information.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2009-2993
Platform(s):openSUSE 11.0
openSUSE 11.1
SUSE Linux Enterprise 11 Moblin 2.0
SUSE Linux Enterprise Desktop 10 SP3 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 10 SP3 for x86
SUSE Linux Enterprise Desktop 11 GA
Product(s):
Definition Synopsis
  • Release Information
  • suse110 is installed
  • AND acroread less than 8.1.7-0.1
  • OR
  • suse111 is installed
  • AND acroread less than 8.1.7-0.1.1
  • OR Package Information
  • sled10-sp3 is installed
  • AND acroread less than 8.1.7-0.5.1
  • OR Package Information
  • sled10-sp3 is installed
  • AND acroread_ja less than 8.1.7-0.5.1
  • OR Package Information
  • sled11 is installed
  • AND acroread_ja less than 8.1.7-0.1.1
  • OR Package Information
  • sled11 is installed
  • AND acroread less than 8.1.7-0.1.1
  • OR Package Information
  • sle11-moblin20 is installed
  • AND acroread less than 8.1.7-0.1.1
    • BACK