Adobe.Reader.Font.Parsing.Arbitrary.Code.Execution

description-logoDescription

This indicates an attack attempt against a code-execution vulnerability in Adobe Reader and Acrobat.
The vulnerability is caused by an error when the vulnerable software handles PDF files with a malformed font stream. It allows a remote attacker to execute arbitrary code via sending a crafted PDF file.

affected-products-logoAffected Products

Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Please refer to the following Adobe advisory for the updates:
http://www.adobe.com/support/security/bulletins/apsb10-21.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)