Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 HTTP:STC:ADOBE:PDF-CATALOG

Severity

 Major

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Adobe Acrobat Reader PDF Catalog Handling Vulnerability

Release Date

 2010/09/28

Update Number

 1780

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Adobe Acrobat Reader PDF Catalog Handling Vulnerability


This signature detects attempts to exploit a known vulnerability against multiple products that parse the Portable Document Format (PDF). Attackers can craft a malicious document that can cause arbitrary code to be executed on the victim host.

Extended Description

Multiple PDF readers are prone to multiple remote buffer-overflow vulnerabilities because the applications fail to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker may be able exploit this issue to execute arbitrary code within the context of the affected application. In some circumstances, the vulnerability can be exploited only to cause a denial of service.

Affected Products

  • Adobe acrobat_reader_(unix) 4.0.0 5
  • Adobe acrobat_reader_(unix) 5.0.0
  • Adobe acrobat_reader_(unix) 5.0.0 5
  • Adobe acrobat_reader_(unix) 5.0.0 6
  • Adobe acrobat_reader_(unix) 5.0.0 7
  • Adobe acrobat_reader_(unix) 5.0.10
  • Adobe acrobat_reader_(unix) 5.0.11
  • Adobe acrobat_reader_(unix) 5.0.8
  • Adobe acrobat_reader_(unix) 5.0.9
  • Adobe acrobat_reader_(unix) 7.0.0
  • Adobe acrobat_reader_(unix) 7.0.1
  • Adobe reader 3.0.0
  • Adobe reader 4.0.0
  • Adobe reader 4.0.0 5
  • Adobe reader 4.0.0 5c
  • Adobe reader 4.0.5 A
  • Adobe reader 5.0.0
  • Adobe reader 5.0.10
  • Adobe reader 5.0.5
  • Adobe reader 5.1.0
  • Adobe reader 6.0.0
  • Adobe reader 6.0.1
  • Adobe reader 6.0.2
  • Adobe reader 6.0.3
  • Adobe reader 6.0.4
  • Adobe reader 7.0.0
  • Adobe reader 7.0.1
  • Adobe reader 7.0.2
  • Adobe reader 7.0.3
  • Adobe reader 7.0.4
  • Adobe reader 7.0.5
  • Adobe reader 7.0.6
  • Adobe reader 7.0.7
  • Adobe reader 7.0.8
  • Apple mac_os_x_preview.app 3.0.8
  • Kde kde 3.2.0
  • Kde kde 3.2.1
  • Kde kde 3.2.2
  • Kde kde 3.2.3
  • Kde kde 3.3.0
  • Kde kde 3.3.1
  • Kde kde 3.3.2
  • Kde kde 3.4.0
  • Kde kde 3.4.1
  • Kde kde 3.4.2
  • Kde kde 3.4.3
  • Kde kde 3.5.0
  • Kde kde 3.5.1
  • Kde kde 3.5.2
  • Kde kde 3.5.3
  • Kde kde 3.5.4
  • Kde kde 3.5.5
  • Kde koffice 1.2.0
  • Kde koffice 1.2.1
  • Kde koffice 1.2.92
  • Kde koffice 1.3.0
  • Kde koffice 1.3.0 Beta1
  • Kde koffice 1.3.0 Beta2
  • Kde koffice 1.3.0 Beta3
  • Kde koffice 1.3.1
  • Kde koffice 1.3.2
  • Kde koffice 1.3.3
  • Kde koffice 1.3.4
  • Kde koffice 1.3.5
  • Kde koffice 1.4.0
  • Kde koffice 1.4.1
  • Kde koffice 1.4.2
  • Kde koffice 1.5.0
  • Kde koffice 1.5.2
  • Kde koffice 1.5.91
  • Kde koffice 1.6.0
  • Kde koffice 1.6.1
  • Kde kpdf 0.5.0
  • Kde kpdf 3.2.0
  • Kde kpdf 3.4.2
  • Kde kpdf 3.4.3
  • Kde kword 1.4.1
  • Kde kword 1.4.2
  • Kde kword 1.5.0
  • Kde kword 1.5.2
  • Mandriva corporate_server 3.0.0
  • Mandriva corporate_server 3.0.0 X86 64
  • Mandriva corporate_server 4.0
  • Mandriva corporate_server 4.0.0 X86 64
  • Mandriva linux_mandrake 2006.0.0
  • Mandriva linux_mandrake 2006.0.0 X86 64
  • Mandriva linux_mandrake 2007.0
  • Mandriva linux_mandrake 2007.0 X86 64
  • Pdftohtml pdftohtml 0.32.0 A
  • Pdftohtml pdftohtml 0.32.0 B
  • Pdftohtml pdftohtml 0.33.0
  • Pdftohtml pdftohtml 0.33.0 A
  • Pdftohtml pdftohtml 0.34.0
  • Pdftohtml pdftohtml 0.35.0
  • Pdftohtml pdftohtml 0.36.0
  • Poppler poppler 0.4.1
  • Poppler poppler 0.4.2
  • Poppler poppler 0.5.1
  • Poppler poppler 0.5.3
  • Poppler poppler 0.5.4
  • Rpath rpath_linux 1
  • Suse linux 10.0
  • Suse linux 10.1
  • Suse linux 9.1
  • Suse linux 9.2
  • Suse linux 9.3
  • Suse suse_linux_enterprise_server 10
  • Suse suse_linux_enterprise_server 9
  • Tetex tetex 2.0.0
  • Tetex tetex 2.0.1
  • Tetex tetex 2.0.2
  • Tetex tetex 3.0.0
  • Turbolinux home
  • Turbolinux multimedia
  • Turbolinux personal
  • Turbolinux turbolinux 10 F...
  • Turbolinux turbolinux FUJI
  • Turbolinux turbolinux_desktop 10.0.0
  • Turbolinux turbolinux_server 10.0.0
  • Turbolinux turbolinux_server 10.0.0 X64
  • Turbolinux turbolinux_server 8.0.0
  • Ubuntu ubuntu_linux 5.10.0 Amd64
  • Ubuntu ubuntu_linux 5.10.0 I386
  • Ubuntu ubuntu_linux 5.10.0 Powerpc
  • Ubuntu ubuntu_linux 5.10.0 Sparc
  • Ubuntu ubuntu_linux 6.06 LTS Amd64
  • Ubuntu ubuntu_linux 6.06 LTS I386
  • Ubuntu ubuntu_linux 6.06 LTS Powerpc
  • Ubuntu ubuntu_linux 6.06 LTS Sparc
  • Ubuntu ubuntu_linux 6.10 Amd64
  • Ubuntu ubuntu_linux 6.10 I386
  • Ubuntu ubuntu_linux 6.10 Powerpc
  • Ubuntu ubuntu_linux 6.10 Sparc
  • Xpdf xpdf 3.0.0 0
  • Xpdf xpdf 3.0.0 1
  • Xpdf xpdf 3.0.0 1Pl1
  • Xpdf xpdf 3.0.0 Pl2
  • Xpdf xpdf 3.0.1 (Patch 2)

References

  • CVE: CVE-2007-0104
  • URL: http://projects.info-pull.com/moab/MOAB-06-01-2007.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out