What is the severity of CVE-2009-3458?

CVE-2009-3458 is classified as a critical vulnerability due to its potential to allow attackers to execute arbitrary code.

How do I fix CVE-2009-3458?

To mitigate CVE-2009-3458, update Adobe Reader or Acrobat to a version 7.1.4, 8.1.7, or 9.2 or later.

What products are affected by CVE-2009-3458?

CVE-2009-3458 affects Adobe Reader and Acrobat versions prior to 7.1.4, 8.1.7, and 9.2.

What type of vulnerabilities does CVE-2009-3458 relate to?

CVE-2009-3458 relates to improper input validation vulnerabilities that could lead to arbitrary code execution.

Are older versions of Adobe Reader and Acrobat safe from CVE-2009-3458?

No, older versions of Adobe Reader and Acrobat prior to their specified updates are not safe from CVE-2009-3458.

Vulnerability/
CVE-2009-3458

critical

9.3

CWE

19/10/2009

7/8/2024

CVE-2009-3458: Input Validation

First published: Mon Oct 19 2009(Updated: )

Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 do not properly validate input, which might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2009-2998.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe Acrobat Reader	<=9.1.3
Adobe Acrobat Reader	=7.0
Adobe Acrobat Reader	=7.0.1
Adobe Acrobat Reader	=7.0.2
Adobe Acrobat Reader	=7.0.3
Adobe Acrobat Reader	=7.0.4
Adobe Acrobat Reader	=7.0.5
Adobe Acrobat Reader	=7.0.6
Adobe Acrobat Reader	=7.0.7
Adobe Acrobat Reader	=7.0.8
Adobe Acrobat Reader	=7.0.9
Adobe Acrobat Reader	=7.1.0
Adobe Acrobat Reader	=7.1.1
Adobe Acrobat Reader	=7.1.3
Adobe Acrobat Reader	=8.0
Adobe Acrobat Reader	=8.1
Adobe Acrobat Reader	=8.1.1
Adobe Acrobat Reader	=8.1.2
Adobe Acrobat Reader	=8.1.3
Adobe Acrobat Reader	=8.1.4
Adobe Acrobat Reader	=8.1.6
Adobe Acrobat Reader	=9.0
Adobe Acrobat Reader	=9.1.1
Adobe Acrobat Reader	=9.1.2
Adobe Acrobat Reader Notification Manager	<=9.1.3
Adobe Acrobat Reader Notification Manager	=7.0
Adobe Acrobat Reader Notification Manager	=7.0.1
Adobe Acrobat Reader Notification Manager	=7.0.2
Adobe Acrobat Reader Notification Manager	=7.0.3
Adobe Acrobat Reader Notification Manager	=7.0.4
Adobe Acrobat Reader Notification Manager	=7.0.5
Adobe Acrobat Reader Notification Manager	=7.0.6
Adobe Acrobat Reader Notification Manager	=7.0.7
Adobe Acrobat Reader Notification Manager	=7.0.8
Adobe Acrobat Reader Notification Manager	=7.0.9
Adobe Acrobat Reader Notification Manager	=7.1.0
Adobe Acrobat Reader Notification Manager	=7.1.1
Adobe Acrobat Reader Notification Manager	=7.1.3
Adobe Acrobat Reader Notification Manager	=8.0
Adobe Acrobat Reader Notification Manager	=8.1
Adobe Acrobat Reader Notification Manager	=8.1.1
Adobe Acrobat Reader Notification Manager	=8.1.2
Adobe Acrobat Reader Notification Manager	=8.1.3
Adobe Acrobat Reader Notification Manager	=8.1.4
Adobe Acrobat Reader Notification Manager	=8.1.5
Adobe Acrobat Reader Notification Manager	=8.1.6
Adobe Acrobat Reader Notification Manager	=9.0
Adobe Acrobat Reader Notification Manager	=9.1
Adobe Acrobat Reader Notification Manager	=9.1.1
Adobe Acrobat Reader Notification Manager	=9.1.2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-3458?
CVE-2009-3458 is classified as a critical vulnerability due to its potential to allow attackers to execute arbitrary code.
How do I fix CVE-2009-3458?
To mitigate CVE-2009-3458, update Adobe Reader or Acrobat to a version 7.1.4, 8.1.7, or 9.2 or later.
What products are affected by CVE-2009-3458?
CVE-2009-3458 affects Adobe Reader and Acrobat versions prior to 7.1.4, 8.1.7, and 9.2.
What type of vulnerabilities does CVE-2009-3458 relate to?
CVE-2009-3458 relates to improper input validation vulnerabilities that could lead to arbitrary code execution.
Are older versions of Adobe Reader and Acrobat safe from CVE-2009-3458?
No, older versions of Adobe Reader and Acrobat prior to their specified updates are not safe from CVE-2009-3458.

agent/references
agent/type
agent/weakness
agent/remedy
agent/author
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
agent/softwarecombine
vendor/adobe
canonical/adobe acrobat reader
version/adobe acrobat reader/9.1.3
version/adobe acrobat reader/7.0
version/adobe acrobat reader/7.0.1
version/adobe acrobat reader/7.0.2
version/adobe acrobat reader/7.0.3
version/adobe acrobat reader/7.0.4
version/adobe acrobat reader/7.0.5
version/adobe acrobat reader/7.0.6
version/adobe acrobat reader/7.0.7
version/adobe acrobat reader/7.0.8
version/adobe acrobat reader/7.0.9
version/adobe acrobat reader/7.1.0
version/adobe acrobat reader/7.1.1
version/adobe acrobat reader/7.1.3
version/adobe acrobat reader/8.0
version/adobe acrobat reader/8.1
version/adobe acrobat reader/8.1.1
version/adobe acrobat reader/8.1.2
version/adobe acrobat reader/8.1.3
version/adobe acrobat reader/8.1.4
version/adobe acrobat reader/8.1.6
version/adobe acrobat reader/9.0
version/adobe acrobat reader/9.1.1
version/adobe acrobat reader/9.1.2
canonical/adobe acrobat reader notification manager
version/adobe acrobat reader notification manager/9.1.3
version/adobe acrobat reader notification manager/7.0
version/adobe acrobat reader notification manager/7.0.1
version/adobe acrobat reader notification manager/7.0.2
version/adobe acrobat reader notification manager/7.0.3
version/adobe acrobat reader notification manager/7.0.4
version/adobe acrobat reader notification manager/7.0.5
version/adobe acrobat reader notification manager/7.0.6
version/adobe acrobat reader notification manager/7.0.7
version/adobe acrobat reader notification manager/7.0.8
version/adobe acrobat reader notification manager/7.0.9
version/adobe acrobat reader notification manager/7.1.0
version/adobe acrobat reader notification manager/7.1.1
version/adobe acrobat reader notification manager/7.1.3
version/adobe acrobat reader notification manager/8.0
version/adobe acrobat reader notification manager/8.1
version/adobe acrobat reader notification manager/8.1.1
version/adobe acrobat reader notification manager/8.1.2
version/adobe acrobat reader notification manager/8.1.3
version/adobe acrobat reader notification manager/8.1.4
version/adobe acrobat reader notification manager/8.1.5
version/adobe acrobat reader notification manager/8.1.6
version/adobe acrobat reader notification manager/9.0
version/adobe acrobat reader notification manager/9.1
version/adobe acrobat reader notification manager/9.1.1
version/adobe acrobat reader notification manager/9.1.2

CVE-2009-3458: Input Validation

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-3458?

How do I fix CVE-2009-3458?

What products are affected by CVE-2009-3458?

What type of vulnerabilities does CVE-2009-3458 relate to?

Are older versions of Adobe Reader and Acrobat safe from CVE-2009-3458?

Company

Resources

Contact