Signature Detail
Short Name |
HTTP:STC:ADOBE:READER-FONT-OF |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Adobe Reader Font Parsing Integer Overflow |
Release Date |
2010/09/28 |
Update Number |
1780 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Adobe Reader Font Parsing Integer Overflow
This signature detects attempts to exploit a known code execution vulnerability in Adobe Reader and Adobe Acrobat. It is due to an integer overflow error within the CoolType.dll module when handling a PDF document embedding a TrueType Font(TTF) with a crafted maxCompositePoints field in a maxp table. Remote attackers can exploit this by enticing target users to open a malicious PDF document. Successful exploitation can result in arbitrary code execution in the context of the logged on user.
Extended Description
Adobe Acrobat and Reader are prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. The following products are affected: Adobe Reader 9.3.3 and prior Adobe Acrobat 9.3.3 and prior Adobe Reader 8.2.3 and prior Acrobat 8.2.3 and prior
Affected Products
- Adobe Acrobat 8.1.5
- Adobe Acrobat 8.2.2
- Adobe Acrobat 8.2.3
- Adobe Acrobat 9.1.1
- Adobe Acrobat 9.2
- Adobe Acrobat 9.3
- Adobe Acrobat 9.3.1
- Adobe Acrobat 9.3.2
- Adobe Acrobat 9.3.3
- Adobe Acrobat Professional 8.0
- Adobe Acrobat Professional 8.1
- Adobe Acrobat Professional 8.1.1
- Adobe Acrobat Professional 8.1.2
- Adobe Acrobat Professional 8.1.2 Security Update 1
- Adobe Acrobat Professional 8.1.3
- Adobe Acrobat Professional 8.1.4
- Adobe Acrobat Professional 8.1.6
- Adobe Acrobat Professional 8.1.7
- Adobe Acrobat Professional 8.2
- Adobe Acrobat Professional 8.2.1
- Adobe Acrobat Professional 8.2.2
- Adobe Acrobat Professional 9
- Adobe Acrobat Professional 9.1
- Adobe Acrobat Professional 9.1.2
- Adobe Acrobat Professional 9.1.3
- Adobe Acrobat Professional 9.2
- Adobe Acrobat Professional 9.3
- Adobe Acrobat Professional 9.3.1
- Adobe Acrobat Professional 9.3.2
- Adobe Acrobat Professional 9.3.3
- Adobe Acrobat Reader (for Linux) 9.1.1
- Adobe Acrobat Standard 8.0
- Adobe Acrobat Standard 8.1
- Adobe Acrobat Standard 8.1.1
- Adobe Acrobat Standard 8.1.2
- Adobe Acrobat Standard 8.1.3
- Adobe Acrobat Standard 8.1.4
- Adobe Acrobat Standard 8.1.6
- Adobe Acrobat Standard 8.1.7
- Adobe Acrobat Standard 8.2
- Adobe Acrobat Standard 8.2.1
- Adobe Acrobat Standard 8.2.2
- Adobe Acrobat Standard 9
- Adobe Acrobat Standard 9.1
- Adobe Acrobat Standard 9.1.2
- Adobe Acrobat Standard 9.1.3
- Adobe Acrobat Standard 9.2
- Adobe Acrobat Standard 9.3
- Adobe Acrobat Standard 9.3.1
- Adobe Acrobat Standard 9.3.2
- Adobe Acrobat Standard 9.3.3
- Adobe Reader 8.0
- Adobe Reader 8.1
- Adobe Reader 8.1.1
- Adobe Reader 8.1.2
- Adobe Reader 8.1.2 Security Update 1
- Adobe Reader 8.1.3
- Adobe Reader 8.1.4
- Adobe Reader 8.1.5
- Adobe Reader 8.1.6
- Adobe Reader 8.1.7
- Adobe Reader 8.2
- Adobe Reader 8.2.1
- Adobe Reader 8.2.2
- Adobe Reader 8.2.3
- Adobe Reader 9
- Adobe Reader 9.1
- Adobe Reader 9.1.1
- Adobe Reader 9.1.2
- Adobe Reader 9.1.3
- Adobe Reader 9.2
- Adobe Reader 9.3
- Adobe Reader 9.3.1
- Adobe Reader 9.3.2
- Adobe Reader 9.3.3
- Red Hat Desktop Extras 4
- Red Hat Enterprise Linux AS Extras 4
- Red Hat Enterprise Linux Desktop Supplementary 5 Client
- Red Hat Enterprise Linux ES Extras 4
- Red Hat Enterprise Linux Extras 4
- Red Hat Enterprise Linux Supplementary 5 Server
- Red Hat Enterprise Linux WS Extras 4
- SuSE openSUSE 11.1
- SuSE openSUSE 11.2
- SuSE openSUSE 11.3
- SuSE SUSE Linux Enterprise Desktop 10 SP3
- SuSE SUSE Linux Enterprise Desktop 11
- SuSE SUSE Linux Enterprise Desktop 11 SP1
References
- BugTraq: 42203
- CVE: CVE-2010-2862