Intrusion PreventionAdobe.Reader.Image.Cache.Race.Condition.Remote.Code.Execution
Description
This indicates an attack attempt against a Code Execution vulnerability in Adobe Reader and Acrobat.
The vulnerability is caused by an error when the vulnerable software handles a malicious PDF file. An attacker can trick an unsuspecting user into visiting a malicious webpage and execute arbitrary code within the context of the application.
Affected Products
Adobe Reader XI (11.0.06) and earlier 11.x versions for Windows and Macintosh
Adobe Reader X (10.1.9) and earlier 10.x versions for Windows and Macintosh
Adobe Acrobat XI (11.0.06) and earlier 11.x versions for Windows and Macintosh
Adobe Acrobat X (10.1.9) and earlier 10.x versions for Windows and Macintosh
Impact
System Compromise: Remote attackers can execute arbitrary code within the context of the target users
Recommended Actions
Upgrade to the latest version available from the website.
http://helpx.adobe.com/security/products/reader/apsb14-15.html
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
| ID | 38892 |
| Created | Jul 11, 2014 |
| Updated | Mar 26, 2022 |
| Risk |
|
| CVE ID | CVE-2014-0528 |
| Exploit Prediction Score | 20.92% |
| Default Action | drop |
| Active | |
| Affected OS | Windows, MacOS |
| Affected App | Adobe |