CERT-MU AD-2009-3

Buffer Overflow Vulnerability in Adobe Acrobat and Reader

Original issue date: 23 February, 2009

Overview

A vulnerability has been reported in Adobe Reader/Acrobat that could allow a remote attacker to execute arbitrary code and take complete control of vulnerable system.

Description

A buffer overflow vulnerability exist in Adobe Acrobat and Reader. This vulnerability is triggered while loading and processing specially crafted PDF file containing malformed image. Successful exploitation of this vulnerability could allow remote attackers to execute arbitrary code and to take complete of the vulnerable system.

Note: Proof-of-concept code to exploit is publicly available on Internet.

Affected systems 

• Adobe Reader versions 9.x
• Adobe Reader versions 8.x
• Adobe Reader versions 7.x
• Adobe Acrobat versions 9.x
• Adobe Acrobat versions 8.x
• Adobe Acrobat versions 7.x

Impact

Severity Rating: High

Workarounds

• Disable JavaScript in Adobe Acrobat and Reader
• Disable displaying of PDF documents in Web Browser
• Disable Automatic opening of PDF documents
• Do not open PDF documents received in emails from untrusted sources

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Vendor Information

Adobe
http://www.adobe.com/support/security/advisories/apsa09-01.html

CVE Name

CVE-2009-0658

References

US-CERT
http://www.kb.cert.org/vuls/id/905281

SecurityTracker
http://securitytracker.com/alerts/2009/Feb/1021739.html

Security Focus
http://www.securityfocus.com/bid/33751

VUPEN Security
http://www.vupen.com/english/advisories/2009/0472