Signature Detail

HTTP: Adobe Reader JavaScript Handling Code Execution

This signature detects attempts to exploit a known vulnerability against Adobe Acrobat Reader. A successful attack can lead to arbitrary code execution.

Extended Description

Adobe Acrobat and Reader are prone to a remote memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause denial-of-service conditions.

Affected Products

• Adobe Acrobat 10.0
• Adobe Acrobat 10.0.1
• Adobe Acrobat 10.0.2
• Adobe Acrobat 10.0.3
• Adobe Acrobat 10.1
• Adobe Acrobat 10.1.1
• Adobe Acrobat 10.1.2
• Adobe Acrobat 9
• Adobe Acrobat 9.1.1
• Adobe Acrobat 9.2
• Adobe Acrobat 9.3
• Adobe Acrobat 9.3.1
• Adobe Acrobat 9.3.2
• Adobe Acrobat 9.3.3
• Adobe Acrobat 9.3.3
• Adobe Acrobat 9.3.4
• Adobe Acrobat 9.3.4
• Adobe Acrobat 9.4
• Adobe Acrobat 9.4.1
• Adobe Acrobat 9.4.2
• Adobe Acrobat 9.4.3
• Adobe Acrobat 9.4.4
• Adobe Acrobat 9.4.5
• Adobe Acrobat 9.4.6
• Adobe Acrobat 9.4.7
• Adobe Acrobat 9.5
• Adobe Acrobat Professional 10.0
• Adobe Acrobat Professional 10.0.1
• Adobe Acrobat Professional 10.0.2
• Adobe Acrobat Professional 10.0.3
• Adobe Acrobat Professional 10.1
• Adobe Acrobat Professional 10.1.1
• Adobe Acrobat Professional 10.1.2
• Adobe Acrobat Professional 9
• Adobe Acrobat Professional 9.1
• Adobe Acrobat Professional 9.1.2
• Adobe Acrobat Professional 9.1.3
• Adobe Acrobat Professional 9.2
• Adobe Acrobat Professional 9.3
• Adobe Acrobat Professional 9.3.1
• Adobe Acrobat Professional 9.3.2
• Adobe Acrobat Professional 9.3.3
• Adobe Acrobat Professional 9.3.4
• Adobe Acrobat Professional 9.4
• Adobe Acrobat Professional 9.4.1
• Adobe Acrobat Professional 9.4.2
• Adobe Acrobat Professional 9.4.3
• Adobe Acrobat Professional 9.4.4
• Adobe Acrobat Professional 9.4.5
• Adobe Acrobat Professional 9.4.6
• Adobe Acrobat Professional 9.4.7
• Adobe Acrobat Professional 9.5
• Adobe Acrobat Professional 9 Extended
• Adobe Acrobat Standard 10.0
• Adobe Acrobat Standard 10.0.1
• Adobe Acrobat Standard 10.0.2
• Adobe Acrobat Standard 10.0.3
• Adobe Acrobat Standard 10.1
• Adobe Acrobat Standard 10.1.1
• Adobe Acrobat Standard 10.1.2
• Adobe Acrobat Standard 9
• Adobe Acrobat Standard 9.1
• Adobe Acrobat Standard 9.1.2
• Adobe Acrobat Standard 9.1.3
• Adobe Acrobat Standard 9.2
• Adobe Acrobat Standard 9.3
• Adobe Acrobat Standard 9.3.1
• Adobe Acrobat Standard 9.3.2
• Adobe Acrobat Standard 9.3.3
• Adobe Acrobat Standard 9.3.4
• Adobe Acrobat Standard 9.3.4
• Adobe Acrobat Standard 9.4
• Adobe Acrobat Standard 9.4.1
• Adobe Acrobat Standard 9.4.2
• Adobe Acrobat Standard 9.4.3
• Adobe Acrobat Standard 9.4.4
• Adobe Acrobat Standard 9.4.5
• Adobe Acrobat Standard 9.4.6
• Adobe Acrobat Standard 9.4.7
• Adobe Acrobat Standard 9.5
• Adobe Reader 10.0
• Adobe Reader 10.0.1
• Adobe Reader 10.0.2
• Adobe Reader 10.0.3
• Adobe Reader 10.1
• Adobe Reader 10.1.1
• Adobe Reader 10.1.2
• Adobe Reader 9
• Adobe Reader 9
• Adobe Reader 9.1
• Adobe Reader 9.1.1
• Adobe Reader 9.1.2
• Adobe Reader 9.1.3
• Adobe Reader 9.2
• Adobe Reader 9.3
• Adobe Reader 9.3.1
• Adobe Reader 9.3.2
• Adobe Reader 9.3.3
• Adobe Reader 9.3.4
• Adobe Reader 9.3.4
• Adobe Reader 9.4
• Adobe Reader 9.4.1
• Adobe Reader 9.4.2
• Adobe Reader 9.4.3
• Adobe Reader 9.4.4
• Adobe Reader 9.4.5
• Adobe Reader 9.4.6
• Adobe Reader 9.4.7
• Adobe Reader 9.5
• Gentoo Linux
• Red Hat Enterprise Linux Desktop Supplementary 5 Client
• Red Hat Enterprise Linux Desktop Supplementary 6
• Red Hat Enterprise Linux Server Supplementary 6
• Red Hat Enterprise Linux Supplementary 5 Server
• Red Hat Enterprise Linux Workstation Supplementary 6
• SuSE openSUSE 11.4
• SuSE openSUSE 12.1

References

• BugTraq: 52949
• CVE: CVE-2012-0775