CVE-2009-3957 — Adobe Acrobat vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

1.5%

top 18.96%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Acrobat Adobe Acrobat Reader

Timeline

PublishedJan 13

Latest updateMay 2

Description

Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, might allow attackers to cause a denial of service (NULL pointer dereference) via unspecified vectors.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶NVDadobe/acrobat_reader9.2+49

▶NVDadobe/acrobat9.2+46

Patches

Patch: www.adobe.com ↗Patch: www.adobe.com ↗

🔴Vulnerability Details

GHSA

GHSA-mfpp-j7hc-5p6f: Adobe Reader and Acrobat 9↗2022-05-02

▶

VulnCheck

Adobe Acrobat and Reader NULL Pointer Dereference↗2009

▶