Vulnerabilities

CVE-2009-3955

by Fred · 13/01/2010

Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code via a crafted JPC_MS_RGN marker in the Jp2c stream of a JpxDecode encoded data stream, which triggers an integer sign extension that bypasses a sanity check, leading to memory corruption.

Date published : 2010-01-13

http://www.securityfocus.com/bid/37757

http://www.us-cert.gov/cas/techalerts/TA10-013A.html

Similar

Tags: Cybersecurity Alert