Vulnerability CVE-2009-2982 - CERT Civis.Net

Vulnerability Name:

CVE-2009-2982 (CCN-53766)

Assigned:

2009-10-13

Published:

2009-10-13

Updated:

2018-10-30

Summary:

An unspecified certificate in Adobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 might allow remote attackers to conduct a "social engineering attack" via unknown vectors.
Per: http://www.adobe.com/support/security/bulletins/apsb09-15.html

Critical vulnerabilities have been identified in Adobe Reader 9.1.3 and Acrobat 9.1.3, Adobe Reader 8.1.6 and Acrobat 8.1.6 for Windows, Macintosh and UNIX, and Adobe Reader 7.1.3 and Acrobat 7.1.3 for Windows and Macintosh. These vulnerabilities could cause the application to crash and could potentially allow an attacker to take control of the affected system. This update represents the second quarterly security update for Adobe Reader and Acrobat.

Adobe recommends users of Adobe Reader 9.1.3 and Acrobat 9.1.3 and earlier versions update to Adobe Reader 9.2 and Acrobat 9.2. Adobe recommends users of Acrobat 8.1.6 and earlier versions update to Acrobat 8.1.7, and users of Acrobat 7.1.3 and earlier versions update to Acrobat 7.1.4. For Adobe Reader users who cannot update to Adobe Reader 9.2, Adobe has provided the Adobe Reader 8.1.7 and Adobe Reader 7.1.4 updates. Updates apply to all platforms: Windows, Macintosh and UNIX.
Affected software versions

Adobe Reader 9.1.3 and earlier versions for Windows, Macintosh, and UNIX
Adobe Acrobat 9.1.3 and earlier versions for Windows and Macinto
Per: http://www.adobe.com/support/security/bulletins/apsb09-15.html

Adobe Reader

Adobe Reader users on Windows can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Windows.

Adobe Reader users on Macintosh can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Macintosh.

Adobe Reader users on UNIX can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Unix.

Acrobat

Acrobat Standard and Pro users on Windows can find the appropriate update here:
http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows.

Acrobat Pro Extended users on Windows can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=158&platform=Windows

Acrobat 3D users on Windows can find the appropriate update here:
http://www.adobe.com/support/downloads/product.jsp?product=112&platform=Windows.

Acrobat Pro users on Macintosh can find the appropriate update here:
http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Macintosh.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2009-2982

Source: CCN
Type: SECTRACK ID: 1023007
Adobe Acrobat and Adobe Reader Flaws Lets Remote Users Execute Arbitrary Code and Deny Service

Source: SECTRACK
Type: UNKNOWN
1023007

Source: CCN
Type: Sun Alert: 270669
Multiple Security Vulnerabilities in Adobe Reader for Solaris 10 May Allow Execution of Arbitrary Code or Cause Denial of Service (DoS) - Adobe Security Bulletin APSB09-15

Source: CCN
Type: Adobe Product Security Bulletin APSB09-15
Security Advisory for Adobe Reader and Acrobat

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb09-15.html

Source: CCN
Type: GLSA-200910-03
Adobe Reader: Multiple vulnerabilities

Source: CCN
Type: OSVDB ID: 58909
Adobe Reader / Acrobat Unspecified Certificate Spoofing Weakness

Source: BID
Type: UNKNOWN
36638

Source: CCN
Type: BID-36638
RETIRED: Adobe Reader and Acrobat October 2009 Multiple Remote Vulnerabilities

Source: CCN
Type: BID-36688
Adobe Reader and Acrobat Certificate Modification Vulnerability

Source: CERT
Type: Patch, US Government Resource
TA09-286B

Source: VUPEN
Type: Patch, Vendor Advisory
ADV-2009-2898

Source: XF
Type: UNKNOWN
adobe-certificate-spoofing(53766)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:6365

Source: SUSE
Type: SUSE-SA:2009:049
Acrobat Reader Security update

Vulnerable Configuration:

Configuration 1:

cpe:/a:adobe:acrobat:7.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.7:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.8:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.9:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.1.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:*:*:*:*:*:*:*:* (Version <= 9.1.3)

Configuration 2:

cpe:/a:adobe:acrobat_reader:7.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.0.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.0.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.0.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.0.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.0.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.0.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.0.7:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.0.8:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.0.9:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.1.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:7.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:8.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:8.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:8.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:8.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:8.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:8.1.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:8.1.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:8.1.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:9.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat_reader:*:*:*:*:*:*:*:* (Version <= 9.1.3)

Configuration CCN 1:

cpe:/a:adobe:acrobat:7.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:3.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:3.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:4.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:4.0.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:4.0.5a:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:4.0.5c:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:5.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:5.0.10:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:5.0.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:5.0.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:6.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:6.0.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:6.0.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:6.0.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:6.0.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:6.0.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.7:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.8:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.0.9:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:7.0.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:7.0.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:7.0.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:7.0.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:7.0.7:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:7.0.8:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:7.0.9:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:8.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:9.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:7.1.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:8.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:7.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:8.1.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:9.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.0.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:9.1.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:9.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:7.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:acrobat:8.1.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:3.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:4.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:4.0.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:4.0.5a:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:4.0.5c:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:4.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:5.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:5.0.10:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:5.0.11:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:5.0.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:6.0:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:5.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:5.0.9:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:5.0.7:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:5.0.6:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:6.0.5:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:6.0.4:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:6.0.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:6.0.2:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:6.0.1:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:7.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:9.1.3:*:*:*:*:*:*:*

OR cpe:/a:adobe:reader:8.1.6:*:*:*:*:*:*:*

AND

cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*

OR cpe:/o:sun:solaris:10::sparc:*:*:*:*:*

OR cpe:/o:opensuse:opensuse:10.3:*:*:*:*:*:*:*

OR cpe:/o:opensuse:opensuse:11.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20092982	V	CVE-2009-2982	2015-11-16
oval:org.mitre.oval:def:6365	V	Adobe Reader and Acrobat social engineering attack via unknown vectors	2013-08-12