Intrusion PreventionAdobe.Acrobat.Shell.Metacharacter.Code.Execution
Description
This indicates a possible attempt to exploit a command-execution vulnerability in Adobe Acrobat Reader.
The vulnerability is caused by an error when the vulnerable software is handles the filename of a PDF file that includes malicious shell metacharacters. It can be exploited via sending an email that contains a crafted PDF attachment, leading to remote code execution.
Affected Products
S.u.S.E. Linux Personal 9.1
S.u.S.E. Linux Personal 9.0 x86_64
S.u.S.E. Linux Personal 9.0
Adobe Acrobat Reader (UNIX) 5.0 6
Adobe Acrobat Reader (UNIX) 5.0 5
Adobe Acrobat Reader (UNIX) 5.0
Impact
System compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest version of Acrobat Reader (5.0.9 or later).
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Status | Detail |
|---|---|---|---|
| 2024-06-24 | 28.813 |
Modified
|
Name:Adobe. Acrobat. Reader. Shell. Metacharacter. Code. Execution:Adobe. Acrobat. Shell. Metacharacter. Code. Execution |
| ID | 13384 |
| Created | Oct 19, 2006 |
| Updated | Jun 21, 2024 |
| CVE ID | |
| Risk |
|
| Exploit Prediction Score | 19.52% |
| Default Action | drop |
| Active | |
| Affected OS | Linux, Other |
| Affected App | Adobe |
| Profile Type | Code Injection |