VYPR
High severity8.8CISA KEVNVD Advisory· Published Oct 13, 2009· Updated Jun 16, 2026

CVE-2009-3459

CVE-2009-3459

Description

Heap-based buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows remote attackers to execute arbitrary code via a crafted PDF file that triggers memory corruption, as exploited in the wild in October 2009. NOTE: some of these details are obtained from third party information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*range: >=7.0,<7.1.4
    • cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*range: >=7.0,<7.1.4
    • (no CPE)range: <7.1.4, <8.1.7, <9.2
  • Range: <7.1.4, <8.1.7, <9.2

Patches

Vulnerability mechanics

References

13

News mentions

4