CVE-2009-4195

Buffer overflow in Adobe Illustrator CS4 14.0.0, CS3 13.0.3 and earlier, and CS3 13.0.0 allows remote attackers to execute arbitrary code via a long DSC comment in an Encapsulated PostScript (.eps) file. NOTE: some of these details are obtained from third party information.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:adobe:illustrator:13.0.0:cs4:*:*:*:*:*:*
cpe:2.3:a:adobe:illustrator:14.0.0:cs4:*:*:*:*:*:*

History

21 Nov 2024, 01:09

Type Values Removed Values Added
References () http://blogs.adobe.com/psirt/2009/12/potential_adobe_illustrator_cs.html - () http://blogs.adobe.com/psirt/2009/12/potential_adobe_illustrator_cs.html -
References () http://osvdb.org/60632 - () http://osvdb.org/60632 -
References () http://retrogod.altervista.org/9sg_adobe_illuso.html - Exploit () http://retrogod.altervista.org/9sg_adobe_illuso.html - Exploit
References () http://secunia.com/advisories/37563 - Vendor Advisory () http://secunia.com/advisories/37563 - Vendor Advisory
References () http://www.adobe.com/support/security/bulletins/apsb10-01.html - () http://www.adobe.com/support/security/bulletins/apsb10-01.html -
References () http://www.securityfocus.com/archive/1/508175/100/0/threaded - () http://www.securityfocus.com/archive/1/508175/100/0/threaded -
References () http://www.securityfocus.com/bid/37192 - Exploit () http://www.securityfocus.com/bid/37192 - Exploit
References () http://www.securitytracker.com/id?1023276 - () http://www.securitytracker.com/id?1023276 -
References () http://www.vupen.com/english/advisories/2009/3396 - Vendor Advisory () http://www.vupen.com/english/advisories/2009/3396 - Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/54521 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/54521 -

Information

Published : 2009-12-04 11:30

Updated : 2024-11-21 01:09


NVD link : CVE-2009-4195

Mitre link : CVE-2009-4195

CVE.ORG link : CVE-2009-4195


JSON object : View

Products Affected

adobe

  • illustrator
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer