Adobe.Reader.FDF.Javascript.Execution

Release Date Jan 12, 2010
Severity high
Impact Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Description This indicates an attack attempt against a JavaScript execution vulnerability in Adobe software. The vulnerability is caused by an error when the vulnerable software handles a malicious FDF file. It allows a remote attacker to execute JavaScript via sending a crafted web page.
Affected Products Adobe Reader 9.2 and earlier versions for Windows, Macintosh, and UNIX. Adobe Acrobat 9.2 and earlier versions for Windows and Macintosh.
Recommended Actions Adobe Reader users on Windows, Macintosh and UNIX can find the appropriate update here: http://get.adobe.com/reader. Acrobat Acrobat Standard and Pro users on Windows can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows. Acrobat Pro Extended users on Windows can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=158&platform=Windows. Acrobat 3D users on Windows can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=112&platform=Windows. Acrobat Pro users on Macintosh can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Macintosh.
Coverage IPS VCM
Common Vulnerabilities and Exposures (CVE) CVE-2009-3956
Reference/s http://www.adobe.com/support/security/bulletins/apsb10-02.html

Fortinet