{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-09T01:10:05.991","vulnerabilities":[{"cve":{"id":"CVE-2009-3461","sourceIdentifier":"psirt@adobe.com","published":"2009-10-19T22:30:00.767","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Unspecified vulnerability in Adobe Acrobat 9.x before 9.2 allows attackers to bypass intended file-extension restrictions via unknown vectors."},{"lang":"es","value":"Vulnerabilidad sin especificar en Adobe Acrobat v9.x anteriores a v9.2 permite a atacantes evitar las restricciones de extensión de archivo previstas a través de vectores de ataque desconocidos."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-264"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:acrobat:9.0.0:*:*:*:*:*:*:*","matchCriteriaId":"5FF485FB-3317-4C89-B636-F22FF19B00BE"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:acrobat:9.1:*:*:*:*:*:*:*","matchCriteriaId":"C7EC46E3-77B7-4455-B3E0-A45C6B69B3DC"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:acrobat:9.1.1:*:*:*:*:*:*:*","matchCriteriaId":"4F475858-DCE2-4C93-A51A-04718DF17593"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:acrobat:9.1.2:*:*:*:*:*:*:*","matchCriteriaId":"88687272-4CD0-42A2-B727-C322ABDE3549"},{"vulnerable":true,"criteria":"cpe:2.3:a:adobe:acrobat:9.1.3:*:*:*:*:*:*:*","matchCriteriaId":"1E5C4FA4-3786-47AF-BD7D-8E75927EB3AA"}]}]}],"references":[{"url":"http://securitytracker.com/id?1023007","source":"psirt@adobe.com"},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-15.html","source":"psirt@adobe.com","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/36638","source":"psirt@adobe.com"},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-286B.html","source":"psirt@adobe.com","tags":["Patch","US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2009/2898","source":"psirt@adobe.com","tags":["Patch","Vendor Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6466","source":"psirt@adobe.com"},{"url":"http://securitytracker.com/id?1023007","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.adobe.com/support/security/bulletins/apsb09-15.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/36638","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.us-cert.gov/cas/techalerts/TA09-286B.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2009/2898","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6466","source":"af854a3a-2127-422b-91ae-364da2661108"}],"evaluatorSolution":"Per: http://www.adobe.com/support/security/bulletins/apsb09-15.html\r\n\r\nAcrobat\r\n\r\nAcrobat Standard and Pro users on Windows can find the appropriate update here:\r\nhttp://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows.\r\n\r\nAcrobat Pro Extended users on Windows can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=158&platform=Windows\r\n\r\nAcrobat 3D users on Windows can find the appropriate update here:\r\nhttp://www.adobe.com/support/downloads/product.jsp?product=112&platform=Windows.\r\n\r\nAcrobat Pro users on Macintosh can find the appropriate update here:\r\nhttp://www.adobe.com/support/downloads/product.jsp?product=1&platform=Macintosh.","evaluatorImpact":"Per: http://www.adobe.com/support/security/bulletins/apsb09-15.html\r\n\r\nThis update resolves an issue that could allow a malicious user to bypass file extension security controls. This issue is specific to Acrobat 9.X."}}]}