Adobe Reader 11.0.0 - Stack Overflow Crash (PoC)

Adobe Reader 11.0.0 - Stack Overflow Crash PoC Title : Adobe Reader 11.0.0 Stack overflow Version : 11.0.0.379 Date : 2012-11-01 Vendor : http://www.adobe.com/ Impact : Med Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : Windows 7 X64 ENG Author : coolkaveh Bug : ---- Don't...

Adobe Reader 11.0.0 - Stack Overflow Crash (PoC)

Title : Adobe Reader 11.0.0 Stack overflow Version : 11.0.0.379 Date : 2012-11-01 Vendor : http://www.adobe.com/ Impact : Med Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : Windows 7 X64 ENG Author : coolkaveh Bug : ---- Don't forget that exploitable bugs will be published...

Adobe Reader 11.0.0 Stack Overflow Vulnerability

Stack Exhaustion vulnerability during the handling of the pdf files. That will trigger a denial of service condition Title : Adobe Reader 11.0.0 Stack overflow Version : 11.0.0.379 Date : 2012-11-01 Vendor : http://www.adobe.com/ Impact : Med Contact : coolkaveh at rocketmail.com Twitter :...

Adobe Reader 10.1.4 - Crash (PoC)

Adobe Reader 10.1.4 - Crash PoC !/usr/bin/perl Title : Adobe reader 10.1.4 memory corruption Version : 10.1.4.38 Date : 2012-10-21 Vendor : http://www.adobe.com/ Impact : High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Author : coolkaveh Bug : ---- Memory...

Adobe Reader 10.1.4.38 Memory Corruption

!/usr/bin/perl Title : Adobe reader 10.1.4 memory corruption Version : 10.1.4.38 Date : 2012-10-21 Vendor : http://www.adobe.com/ Impact : High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Author : coolkaveh Bug : ---- Memory corruption during the handling of the...

Adobe Reader 10.1.4 - Crash (PoC)

!/usr/bin/perl Title : Adobe reader 10.1.4 memory corruption Version : 10.1.4.38 Date : 2012-10-21 Vendor : http://www.adobe.com/ Impact : High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Author : coolkaveh Bug : ---- Memory corruption during the handling of the...

Adobe reader 10.1.4 memory corruption

Memory corruption during the handling of the pdf files a context-dependent attacker can execute arbitrary code. !/usr/bin/perl Title : Adobe reader 10.1.4 memory corruption Version : 10.1.4.38 Date : 2012-10-21 Vendor : http://www.adobe.com/ Impact : High Contact : coolkaveh at rocketmail.com...

VulnCheck KEV: CVE-2010-1241

Heap-based buffer overflow in the custom heap management system in Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted PDF document, aka FG-VD-10-005...

VulnCheck KEV: CVE-2010-2862

Integer overflow in CoolType.dll in Adobe Reader 8.2.3 and 9.3.3, and Acrobat 9.3.3, allows remote attackers to execute arbitrary code via a TrueType font with a large maxCompositePoints value in a Maximum Profile maxp table...

Firefox 17 Beta Released with Click-to-Play Plugins for blocking vulnerable Plugins

Last week, Mozilla announced it will prompt Firefox users on Windows with old versions of Adobe Reader, Adobe Flash, and Microsoft Silverlight, but refused to detail how the system will work. Finally today Firefox 17 is now in beta and with it is a very cool feature, click-to-play plugins. When a...

Mozilla Adds Click-to-Play Plugin Security Feature to Firefox Beta

Attackers have been going after vulnerabilities in browser plugins and extensions for years now, as they know that users are slow about updating these components. Even if users have the browser set to update automatically, the third-party components are a separate issue and need to be patched on...

Adobe Acrobat and Reader Invalid Value Code Execution (APSB12-16; CVE-2012-4149)

A remote code execution vulnerability has been reported in Adobe Acrobat and Reader...

New PDF Attack Targets Aviation Defense Industry

FireEye reported today it had detected a new critical PDF attack targeting the aviation defense industry. Malware Page exploits a stack-based buffer overflow vulnerability in Adobe Acrobat and Adobe Reader. An attacker would be able to execute code remotely via a crafted argument to the getIcon...

Adobe Reader fails to properly handle signatures

Overview Adobe Reader fails to properly handle RSA signatures. Adobe Reader contains an issue where it may fail to properly verify RSA signatures. Masahiko Takenaka of FUJITSU LABORATORIES LTD. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

JVN#51615542: Adobe Reader fails to properly handle signatures

Adobe Reader contains an issue where it may fail to properly verify RSA signatures. Impact An attacker may be able to forge an RSA signature on a PDF document. Solution Update the software Update to the latest version according to the information provided by the developer. Note that this issue wa...

Adobe Acrobat and Reader U3D Texture Parsing Buffer Overflow (APSB12-16; CVE-2012-2049)

A stack buffer overflow vulnerability has been reported in Adobe Reader...

Adobe Reader WKT String Buffer Overflow (APSB12-16; CVE-2012-2050)

A remote code execution vulnerability has been reported in Adobe Reader...

Adobe Reader Multiple Unspecified Vulnerabilities - Mac OS X

Adobe Reader is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Adobe Reader Multiple Unspecified Vulnerabilities (Aug 2012) - Windows

Adobe Reader is prone to multiple unspecified vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2012-4363

Multiple unspecified vulnerabilities in Adobe Reader through 10.1.4 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF document, related to "sixteen more crashes affecting Windows, OS X, or both systems."...