Short Name |
HTTP:STC:ADOBE:2013-5065-PDF |
---|---|
Severity |
Critical |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Adobe Acrobat Reader CVE-2013-5065 Malicious Dropper |
Release Date |
2013/12/03 |
Update Number |
2324 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects the pdf dropper that is being used in-the-wild to exploit a known privilege escalation vulnerability against Windows XP and Windows Server 2003. Successful exploitation could lead to arbitrary code execution in Kernel mode.
Per: http://technet.microsoft.com/en-us/security/bulletin/ms14-002 "This security update also addresses the vulnerability first described in Microsoft Security Advisory 2814486."