Signature Detail
Short Name |
HTTP:STC:ADOBE:CVE-2013-3353 |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Adobe Acrobat Reader Head Tag Length Integer Overflow |
Release Date |
2013/11/25 |
Update Number |
2322 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Adobe Acrobat Reader Head Tag Length Integer Overflow
This signature detects attempts to exploit a known vulnerability in the Adobe Acrobat Reader. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the user.
Extended Description
Buffer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-3356.
Affected Products
- adobe acrobat 10.0.1 (-:pro)
- adobe acrobat 10.0.2
- adobe acrobat 10.0.3
- adobe acrobat 10.0 (-:pro)
- adobe acrobat 10.1
- adobe acrobat 10.1.1
- adobe acrobat 10.1.2
- adobe acrobat 10.1.3
- adobe acrobat 10.1.4
- adobe acrobat 10.1.5
- adobe acrobat 10.1.6
- adobe acrobat 10.1.7
- adobe acrobat 11.0
- adobe acrobat 11.0.1
- adobe acrobat 11.0.2
- adobe acrobat 11.0.3
- adobe acrobat_reader 10.0
- adobe acrobat_reader 10.0.1
- adobe acrobat_reader 10.0.2
- adobe acrobat_reader 10.0.3
- adobe acrobat_reader 10.1
- adobe acrobat_reader 10.1.1
- adobe acrobat_reader 10.1.2
- adobe acrobat_reader 10.1.3
- adobe acrobat_reader 10.1.4
- adobe acrobat_reader 10.1.5
- adobe acrobat_reader 10.1.6
- adobe acrobat_reader 10.1.7
- adobe acrobat_reader 11.0
- adobe acrobat_reader 11.0.1
- adobe acrobat_reader 11.0.2
- adobe acrobat_reader 11.0.3
References
- CVE: CVE-2013-3353