Adobe.Acrobat.BMP.Colors.Parsing.Memory.Corruption

Release Date Jan 12, 2012
Severity critical
Impact System Compromise: Remote attackers can gain control of vulnerable systems.
Description This indicates an attack attempt against a Memory Corruption vulnerability in Adobe Reader and Adobe Acrobat. The vulnerability is caused by an error that occurs when the vulnerable software handles a malicious PDF file. A remote attacker may exploit this to execute arbitrary code via a crafted PDF file.
Affected Products Adobe Reader X (10.1.1) and earlier 10.x versions for Windows and Macintosh Adobe Reader 9.4.7 and earlier 9.x versions for Windows Adobe Reader 9.4.6 and earlier 9.x versions for Macintosh Adobe Acrobat X (10.1.1) and earlier 10.x versions for Windows and Macintosh Adobe Acrobat 9.4.7 and earlier 9.x versions for Windows Adobe Acrobat 9.4.6 and earlier 9.x versions for Macintosh
Recommended Actions Refer to the vendor's website for suggested workaround. http://www.adobe.com/support/security/bulletins/apsb12-01.html
Coverage IPS VCM
Common Vulnerabilities and Exposures (CVE) CVE-2011-4373
Reference/s http://www.adobe.com/support/security/bulletins/apsb12-01.html

Fortinet