Adobe Acrobat Reader File Extension Overflow

2004-07-12T04:41:24
ID OSVDB:7766
Type osvdb
Reporter OSVDB
Modified 2004-07-12T04:41:24

Description

Vulnerability Description

A remote overflow exists in Adobe Acrobat Reader. The Adobe Acrobat Reader fails to validate the filename path during parsing resulting in a buffer overflow. With a specially crafted request, an attacker can cause execute arbitrary code resulting in a loss of integrity.

Solution Description

Upgrade to version 6.0.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in Adobe Acrobat Reader. The Adobe Acrobat Reader fails to validate the filename path during parsing resulting in a buffer overflow. With a specially crafted request, an attacker can cause execute arbitrary code resulting in a loss of integrity.

References:

Secunia Advisory ID:12053 Other Advisory URL: http://www.idefense.com/application/poi/display?id=116&type=vulnerabilities Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2004-07/0492.html ISS X-Force ID: 16667 CVE-2004-0632