CVE-2009-0927 : Stack-based buffer overflow in Adobe Reader and Adobe Acrobat 9 before 9.1, 8 be

Stack-based buffer overflow in Adobe Reader and Adobe Acrobat 9 before 9.1, 8 before 8.1.3 , and 7 before 7.1.1 allows remote attackers to execute arbitrary code via a crafted argument to the getIcon method of a Collab object, a different vulnerability than CVE-2009-0658.

Published 2009-03-19 10:30:00

Updated 2025-03-07 14:22:47

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute code

Products affected by CVE-2009-0927

Adobe » Acrobat Reader
Versions from including (>=) 8.0 and before (<) 8.1.3
cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*
Matching versions
Adobe » Acrobat Reader
Versions from including (>=) 9.0 and before (<) 9.1
cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*
Matching versions
Adobe » Acrobat Reader
Versions from including (>=) 7.0 and before (<) 7.1.1
cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*
Matching versions

CVE-2009-0927 is in the CISA Known Exploited Vulnerabilities Catalog

CISA vulnerability name:

Adobe Reader and Adobe Acrobat Stack-Based Buffer Overflow Vulnerability

CISA required action:

Apply updates per vendor instructions.

CISA description:

Stack-based buffer overflow in Adobe Reader and Adobe Acrobat allows remote attackers to execute arbitrary code.

Notes:

https://nvd.nist.gov/vuln/detail/CVE-2009-0927

Added on 2022-03-25 Action due date 2022-04-15

Exploit prediction scoring system (EPSS) score for CVE-2009-0927

EPSS FAQ

94.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 100 %

Percentile, the proportion of vulnerabilities that are scored at or less

Metasploit modules for CVE-2009-0927

Adobe Collab.getIcon() Buffer Overflow

Disclosure Date: 2009-03-24

First seen: 2020-04-26

exploit/windows/browser/adobe_geticon

This module exploits a buffer overflow in Adobe Reader and Adobe Acrobat. Affected versions include < 7.1.1, < 8.1.3, and < 9.1. By creating a specially crafted pdf that a contains malformed Collab.getIcon() call, an attacker may be able to execute arbitrary code.

More information
Adobe Collab.getIcon() Buffer Overflow

Disclosure Date: 2009-03-24

First seen: 2020-04-26

exploit/windows/fileformat/adobe_geticon

This module exploits a buffer overflow in Adobe Reader and Adobe Acrobat. Affected versions include < 7.1.1, < 8.1.3, and < 9.1. By creating a specially crafted pdf that a contains malformed Collab.getIcon() call, an attacker may be able to execute arbitrary code.

More information

CVSS scores for CVE-2009-0927

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	2.8	5.9	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-02-10
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High
8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	2.8	5.9	NIST	2025-03-07
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2009-0927

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)
CWE-121 Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

Assigned by: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

References for CVE-2009-0927

http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00005.html

[security-announce] SUSE Security Announcement: acroread (SUSE-SA:2009:014) - openSUSE Security Announce - openSUSE Mailing Lists
Mailing List;Third Party Advisory

CVEs referencing this url
http://secunia.com/advisories/34706

About Secunia Research | Flexera
Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/49312

Adobe Acrobat and Reader getIcon() buffer overflow CVE-2009-0927 Vulnerability Report
Third Party Advisory;VDB Entry
http://secunia.com/advisories/34790

About Secunia Research | Flexera
Third Party Advisory
http://www.securityfocus.com/archive/1/502116/100/0/threaded

Third Party Advisory;VDB Entry
http://www.securityfocus.com/bid/34169

Third Party Advisory;VDB Entry
http://www.securitytracker.com/id?1021861

Access Denied
Third Party Advisory;VDB Entry
http://www.adobe.com/support/security/bulletins/apsb09-04.html

Adobe - Security Advisories : APSB09-04 - Security Updates available for Adobe Reader and Acrobat
Patch;Vendor Advisory

CVEs referencing this url
http://secunia.com/advisories/34490

About Secunia Research | Flexera
Third Party Advisory
http://www.vupen.com/english/advisories/2009/0770

Third Party Advisory
http://security.gentoo.org/glsa/glsa-200904-17.xml

Third Party Advisory

CVEs referencing this url
http://sunsolve.sun.com/search/document.do?assetkey=1-66-256788-1

Broken Link

CVEs referencing this url
http://www.exploit-db.com/exploits/9579

Third Party Advisory;VDB Entry
http://www.vupen.com/english/advisories/2009/1019

Third Party Advisory

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html

[security-announce] SUSE Security Summary Report: SUSE-SR:2009:009 - openSUSE Security Announce - openSUSE Mailing Lists
Mailing List;Third Party Advisory

CVEs referencing this url
http://www.zerodayinitiative.com/advisories/ZDI-09-014

ZDI-09-014 | Zero Day Initiative
Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2009-0927