virus logo Intrusion Prevention

Adobe.Acrobat.GetIcon.Method.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against a buffer-overflow vulnerability in Adobe Reader and Adobe Acrobat.
The vulnerability is caused by an error when the vulnerable software handles a malicious JavaScript. It allows a remote attacker to execute arbitrary code via sending a crafted pdf file.

affected-products-logoAffected Products

Adobe Reader and Adobe Acrobat 9.1 and 7.1.1

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Refer to the vendor's web site for the suggested workaround:
http://www.adobe.com/support/security/bulletins/apsb09-04.html

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2024-07-22 28.830
Modified
 Name:Adobe.
Acrobat.
GetIcon.
Method.
Stack.
Overflow:Adobe.
Acrobat.
GetIcon.
Method.
Buffer.
Overflow
2020-03-03 15.787
Modified
 Sig Added

References

http://www.zerodayinitiative.com/advisories/ZDI-09-014/
ID 17342
Created Apr 28, 2009
Updated Jul 18, 2024
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Known Exploited Yes
Exploit Prediction Score 93.31%
Default Action drop
Active
Affected OS Windows, MacOS
Affected App Adobe
Profile Type Other