CERT-MU Vulnerability Note VN-2009-12
Adobe Reader JavaScript Vulnerabilities
Original Issue Date: April 30, 2009
Severity Rating: High
Systems Affected
- Adobe Reader 9.x
- Adobe Reader 8.x
- Adobe Reader 7.x
Overview
Two vulnerabilities have been reported in Adobe Reader which could allow remote code execution.
Description
These vulnerabilities are caused due to errors while processing calls to getAnnots() and customDictionaryOpen() JavaScript methods. These errors could be exploited via specially crafted PDF file which cause memory corruption. Successful exploitation of these vulnerabilities could allow remote code execution on the vulnerable system.
Note: Proof-of-concept code to exploit is available on Internet
Workarounds
- Disable JavaScript in Adobe Reader.
- Do not open PDF documents received from untrusted sources or received unexpectedly from trusted sources.
Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
Vendor Information
Adobe
http://blogs.adobe.com/psirt/2009/04/potential_adobe_reader_issue.html
http://blogs.adobe.com/psirt/2009/04/update_on_adobe_reader_issue.html
References
Adobe
http://blogs.adobe.com/psirt/2009/04/potential_adobe_reader_issue.html
http://blogs.adobe.com/psirt/2009/04/update_on_adobe_reader_issue.html
US-CERT
http://www.uscert.gov/current/index.html#adobe_reader_javascript_function
_vulnerability
VUPEN Security
http://www.vupen.com/english/advisories/2009/1061
Security Focus
http://www.securityfocus.com/bid/34736
http://www.securityfocus.com/brief/953
Security Tracker
http://www.securitytracker.com/alerts/2009/Apr/1022139.html
Secunia
http://secunia.com/advisories/34924/
|
