Signature Detail

HTTP: Adobe Reader Widget Null Pointer Dereference Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Adobe Reader. A successful attack can lead to arbitrary code execution.

Extended Description

Adobe Acrobat and Reader are prone to a remote memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause denial-of-service conditions.

Affected Products

• Adobe Acrobat 10.0
• Adobe Acrobat 10.0.1
• Adobe Acrobat 10.0.2
• Adobe Acrobat 10.0.3
• Adobe Acrobat 10.1
• Adobe Acrobat 10.1.1
• Adobe Acrobat 10.1.2
• Adobe Acrobat 10.1.3
• Adobe Acrobat 9.4
• Adobe Acrobat 9.4.1
• Adobe Acrobat 9.4.2
• Adobe Acrobat 9.4.3
• Adobe Acrobat 9.4.4
• Adobe Acrobat 9.4.5
• Adobe Acrobat 9.4.6
• Adobe Acrobat 9.4.7
• Adobe Acrobat 9.5
• Adobe Acrobat 9.5.1
• Adobe Reader 10.0
• Adobe Reader 10.0.1
• Adobe Reader 10.0.2
• Adobe Reader 10.0.3
• Adobe Reader 10.1
• Adobe Reader 10.1.1
• Adobe Reader 10.1.2
• Adobe Reader 10.1.3
• Adobe Reader 9.4.1
• Adobe Reader 9.4.2
• Adobe Reader 9.4.3
• Adobe Reader 9.4.4
• Adobe Reader 9.4.5
• Adobe Reader 9.4.6
• Adobe Reader 9.4.7
• Adobe Reader 9.5
• Adobe Reader 9.5.1

References

• BugTraq: 55007
• CVE: CVE-2010-2883
• CVE: CVE-2012-4148