Signature Detail
Short Name |
HTTP:STC:ADOBE:READER-FILE-DOS |
|---|---|
Severity |
Medium |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Adobe Reader Improper File Parsing Denial of Service |
Release Date |
2013/11/19 |
Update Number |
2321 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Adobe Reader Improper File Parsing Denial of Service
This signature detects attempts to exploit a known vulnerability against Adobe Reader. A successful attack can result in a denial-of-service condition.
Extended Description
Multiple stack-based buffer overflows in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allow attackers to execute arbitrary code via unspecified vectors.
Affected Products
- adobe acrobat 10.0.1 (-:pro)
- adobe acrobat 10.0.2
- adobe acrobat 10.0.3
- adobe acrobat 10.0 (-:pro)
- adobe acrobat 10.1
- adobe acrobat 10.1.1
- adobe acrobat 10.1.2
- adobe acrobat 10.1.3
- adobe acrobat 10.1.4
- adobe acrobat 10.1.5
- adobe acrobat 10.1.6
- adobe acrobat 10.1.7
- adobe acrobat 11.0
- adobe acrobat 11.0.1
- adobe acrobat 11.0.2
- adobe acrobat 11.0.3
- adobe acrobat_reader 10.0
- adobe acrobat_reader 10.0.1
- adobe acrobat_reader 10.0.2
- adobe acrobat_reader 10.0.3
- adobe acrobat_reader 10.1
- adobe acrobat_reader 10.1.1
- adobe acrobat_reader 10.1.2
- adobe acrobat_reader 10.1.3
- adobe acrobat_reader 10.1.4
- adobe acrobat_reader 10.1.5
- adobe acrobat_reader 10.1.6
- adobe acrobat_reader 10.1.7
- adobe acrobat_reader 11.0
- adobe acrobat_reader 11.0.1
- adobe acrobat_reader 11.0.2
- adobe acrobat_reader 11.0.3
References
- CVE: CVE-2013-3351