Adobe Reader is free software for viewing PDF documents.
A stack buffer overflow vulnerability allows command execution when a user opens a PDF file with an embedded TIFF image that has one of several fields encoded as a short integer with an overly long data count field.
Upgrade to Adobe Reader 8.x version greater than 8.2.1 or 9.x version greater than 9.3.1.
Exploit works on Adobe Reader 9.3 and requires a user to open the exploit file in Adobe Reader. The vulnerability is triggered when the file is closed.
It may take relatively longer time to establish a shell session as this exploit needs to search the memory to find the shell code.