Signature Detail
Short Name |
HTTP:STC:ADOBE:DLMGR-AOM-OF |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Adobe Download Manager AOM File Section Name Buffer Overflow |
Release Date |
2006/12/11 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Adobe Download Manager AOM File Section Name Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Adobe Download Manger. An attacker can create malicious Web pages containing dangerous AOM File sections known to be used by Adobe products to update existing software. If these sections are accessed by a victim, the attacker can gain control of the client system.
Extended Description
Adobe Download Manager is affected by a remote buffer-overflow vulnerability. An attacker can exploit this issue by crafting a malicious AOM file and enticing a user to view a webpage containing the file. A successful attack may result in arbitrary code execution. This issue affects Adobe Download Manager 2.1 and prior versions.
Affected Products
- Adobe Download Manager 2.1
References
- BugTraq: 21453
- CVE: CVE-2006-5856
- URL: http://research.eeye.com/html/advisories/published/AD20061205.html