Lucene search

[email protected]NVD:CVE-2009-3790

HistoryOct 26, 2009 - 5:30 p.m.

CVE-2009-3790

2009-10-2617:30:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.2

Confidence

High

EPSS

0.019

Percentile

88.6%

JSON

Heap-based buffer overflow in FormMax (formerly AcroForm) evaluation 3.5 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted FormMax import (.aim) file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

Nvd

Node

cutepdfformmaxMatch3.5

VendorProductVersionCPE
cutepdfformmax3.5cpe:2.3:a:cutepdf:formmax:3.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cutepdf	formmax	3.5	cpe:2.3:a:cutepdf:formmax:3.5:::::::*

References

osvdb.org/59079

secunia.com/advisories/36943

exchange.xforce.ibmcloud.com/vulnerabilities/53890

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.2

Confidence

High

EPSS

0.019

Percentile

88.6%

JSON

Related for NVD:CVE-2009-3790

cve1 openvas2 prion1 cvelist1