[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Adobe Reader XI versions are vulnerable to a heap overflow

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Adobe Reader XI versions are vulnerable to a heap overflow
From: n1s0o@xxxxxxxxx
Date: Tue, 29 Jan 2013 06:02:23 GMT

1. OVERVIEW

Adobe Reader XI versions are vulnerable to a heap overflow

2. BACKGROUND

Adobe Reader software is the free trusted standard for reliably viewing, 
printing, and annotating PDF documents. It's the only PDF file viewer that can 
open and interact with all types of PDF content, including forms and multimedia.

3. VULNERABILITY DESCRIPTION

A specially crafted PDF file may result in a heap overflow, corrupting the heap 
and potentially allowing code execution.
The flaw is due to allocating predefined heap space for an object in the PDF 
format, which may be bigger than anticipated.

4. VERSIONS AFFECTED

11.x

5. SOLUTION

The vendor is fixing this issue

6. CREDIT

Nisso Kalim ~~~DEMO hackers~~~

Prev by Date: XSS in Elgg 1.8.12, 1.7.16 (core module "Twitter widget")
Next by Date: Re: Wordpress Valums Uploader - File Upload Vulnerability
Previous by thread: XSS in Elgg 1.8.12, 1.7.16 (core module "Twitter widget")
Next by thread: Cisco Security Advisory: Portable SDK for UPnP Devices Contains Buffer Overflow Vulnerabilities
Index(es):
- Date
- Thread