This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
HTTP:STC:ADOBE:PDF-JBIG2DECODE
|
Severity |
Major
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
HTTP
|
Keywords |
Adobe Acrobat PDF Reader JBIG2Decode Overflow
|
Release Date |
2009/02/23
|
Update Number |
1371
|
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
HTTP: Adobe Acrobat PDF Reader JBIG2Decode Overflow
This signature detects attempts to exploit a known vulnerability in Adobe Acrobat. An attacker can create a malicious Web site with Web pages containing dangerous PDF documents, which if accessed by a victim, allows the attacker to gain control of the victim's computer.
Extended Description
Adobe Acrobat and Reader are prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the application or crash the application, denying service to legitimate users.
The issue affects Reader and Acrobat 9, 8.1.3 and prior, and 7.
UPDATE (February 24, 2009): Further reports suggest that this issue affects the vulnerable applications running on Apple Mac OS X and various Linux-based operating systems.
Affected Products
- Adobe acrobat 7.0.0
- Adobe acrobat 7.0.1
- Adobe acrobat 7.0.2
- Adobe acrobat 7.0.3
- Adobe acrobat_professional 7.0.0
- Adobe acrobat_professional 7.0.1
- Adobe acrobat_professional 7.0.2
- Adobe acrobat_professional 7.0.3
- Adobe acrobat_professional 7.0.4
- Adobe acrobat_professional 7.0.5
- Adobe acrobat_professional 7.0.6
- Adobe acrobat_professional 7.0.7
- Adobe acrobat_professional 7.0.8
- Adobe acrobat_professional 7.0.9
- Adobe acrobat_professional 7.1
- Adobe acrobat_professional 8.0
- Adobe acrobat_professional 8.1
- Adobe acrobat_professional 8.1.1
- Adobe acrobat_professional 8.1.2
- Adobe acrobat_professional 8.1.2 Security Update 1
- Adobe acrobat_professional 8.1.3
- Adobe acrobat_professional 9
- Adobe acrobat_reader_(unix) 7.0.0
- Adobe acrobat_reader_(unix) 7.0.1
- Adobe acrobat_standard 7.0.0
- Adobe acrobat_standard 7.0.1
- Adobe acrobat_standard 7.0.2
- Adobe acrobat_standard 7.0.3
- Adobe acrobat_standard 7.0.4
- Adobe acrobat_standard 7.0.5
- Adobe acrobat_standard 7.0.6
- Adobe acrobat_standard 7.0.7
- Adobe acrobat_standard 7.0.8
- Adobe acrobat_standard 7.1
- Adobe acrobat_standard 8.0
- Adobe acrobat_standard 8.1
- Adobe acrobat_standard 8.1.1
- Adobe acrobat_standard 8.1.2
- Adobe acrobat_standard 8.1.3
- Adobe acrobat_standard 9
- Adobe reader 7.0.0
- Adobe reader 7.0.1
- Adobe reader 7.0.2
- Adobe reader 7.0.3
- Adobe reader 7.0.4
- Adobe reader 7.0.5
- Adobe reader 7.0.6
- Adobe reader 7.0.7
- Adobe reader 7.0.8
- Adobe reader 7.0.9
- Adobe reader 7.1
- Adobe reader 8.0
- Adobe reader 8.1
- Adobe reader 8.1.1
- Adobe reader 8.1.2
- Adobe reader 8.1.2 Security Update 1
- Adobe reader 8.1.3
- Adobe reader 9
- Gentoo linux
- Nortel_networks callpilot 1002Rp
- Nortel_networks callpilot 1005R
- Nortel_networks callpilot 201I
- Nortel_networks callpilot 600R
- Nortel_networks callpilot 703T
- Nortel_networks self-service-ccss7
- Nortel_networks self-service_mps_1000
- Nortel_networks self-service_mps_500
- Nortel_networks self-service_peri_application
- Nortel_networks self-service_peri_workstation
- Nortel_networks self-service_speech_server
- Sun solaris 10 Sparc
- Suse linux_desktop 10
- Suse novell_linux_desktop 9.0.0
- Suse opensuse 10.3
- Suse opensuse 11.0
- Suse opensuse 11.1
- Suse suse_linux_enterprise_desktop 10 SP2
- Suse suse_linux_enterprise_desktop 11
- Turbolinux client 2008
References