J-Security Center

Title: Adobe Acrobat Reader Firefox Plugin Memory Corruption Remote Code Execution Vulnerability

Severity: HIGH

Description:

Adobe Reader and Acrobat are applications for handling PDF files.

The applications are prone to a remote code-execution vulnerability because they fail to properly free memory resources. This issue occurs when handling webpages that include an 'embed' tag for a PDF file that doesn't exist. Specifically, when Firefox navigates away from the webpage and unloads the PDF viewing plugin, an invalid pointer write will occur.

NOTE: For an exploit to succeed, the Firefox plugin must be enabled and the 'Display PDF in browser' option must be set.

An attacker can exploit this issue by supplying a malicious PDF file. Successful exploits may allow the attacker to execute arbitrary code in the context of a user running the affected application. Failed attempts will likely result in denial-of-service conditions.

This issue was previously covered in BID 36638 (Adobe Reader and Acrobat October 2009 Multiple Remote Vulnerabilities), but has been given its own record to better document it.

Affected Products:

  • Adobe Acrobat 7.0.0
  • Adobe Acrobat 7.0.1
  • Adobe Acrobat 7.0.2
  • Adobe Acrobat 7.0.3
  • Adobe Acrobat Professional 7.0.0
  • Adobe Acrobat Professional 7.0.1
  • Adobe Acrobat Professional 7.0.2
  • Adobe Acrobat Professional 7.0.3
  • Adobe Acrobat Professional 7.0.4
  • Adobe Acrobat Professional 7.0.5
  • Adobe Acrobat Professional 7.0.6
  • Adobe Acrobat Professional 7.0.7
  • Adobe Acrobat Professional 7.0.8
  • Adobe Acrobat Professional 7.0.9
  • Adobe Acrobat Professional 7.1
  • Adobe Acrobat Professional 7.1.1
  • Adobe Acrobat Professional 7.1.3
  • Adobe Acrobat Professional 8.0
  • Adobe Acrobat Professional 8.1
  • Adobe Acrobat Professional 8.1.1
  • Adobe Acrobat Professional 8.1.2
  • Adobe Acrobat Professional 8.1.2 Security Update 1
  • Adobe Acrobat Professional 8.1.3
  • Adobe Acrobat Professional 8.1.4
  • Adobe Acrobat Professional 8.1.6
  • Adobe Acrobat Reader 7.0.0
  • Adobe Acrobat Reader 7.0.1
  • Adobe Acrobat Reader 7.0.2
  • Adobe Acrobat Reader 7.0.3
  • Adobe Acrobat Reader 7.0.4
  • Adobe Acrobat Reader 7.0.5
  • Adobe Acrobat Reader 7.0.6
  • Adobe Acrobat Reader 7.0.7
  • Adobe Acrobat Reader 7.0.8
  • Adobe Acrobat Reader 7.0.8
  • Adobe Acrobat Reader 7.0.9
  • Adobe Acrobat Reader 7.0.9
  • Adobe Acrobat Reader 7.1
  • Adobe Acrobat Reader 7.1.1
  • Adobe Acrobat Reader 7.1.2
  • Adobe Acrobat Reader 8.0
  • Adobe Acrobat Reader 8.1
  • Adobe Acrobat Reader 8.1.1
  • Adobe Acrobat Reader 8.1.2
  • Adobe Acrobat Reader 8.1.2 Security Update 1
  • Adobe Acrobat Reader 8.1.3
  • Adobe Acrobat Reader 8.1.4
  • Adobe Acrobat Reader 8.1.5
  • Adobe Acrobat Reader 8.1.6
  • Adobe Acrobat Standard 7.0.0
  • Adobe Acrobat Standard 7.0.1
  • Adobe Acrobat Standard 7.0.2
  • Adobe Acrobat Standard 7.0.3
  • Adobe Acrobat Standard 7.0.4
  • Adobe Acrobat Standard 7.0.5
  • Adobe Acrobat Standard 7.0.6
  • Adobe Acrobat Standard 7.0.7
  • Adobe Acrobat Standard 7.0.8
  • Adobe Acrobat Standard 7.1
  • Adobe Acrobat Standard 7.1.1
  • Adobe Acrobat Standard 7.1.3
  • Adobe Acrobat Standard 8.0
  • Adobe Acrobat Standard 8.1
  • Adobe Acrobat Standard 8.1.1
  • Adobe Acrobat Standard 8.1.2
  • Adobe Acrobat Standard 8.1.3
  • Adobe Acrobat Standard 8.1.4
  • Adobe Acrobat Standard 8.1.6
  • RedHat Desktop Extras 3
  • RedHat Desktop Extras 4
  • RedHat Enterprise Linux AS Extras 3
  • RedHat Enterprise Linux AS Extras 4
  • RedHat Enterprise Linux Desktop Supplementary 5 client
  • RedHat Enterprise Linux ES Extras 3
  • RedHat Enterprise Linux ES Extras 4
  • RedHat Enterprise Linux Extras 3
  • RedHat Enterprise Linux Extras 4
  • RedHat Enterprise Linux Supplementary 5 server
  • RedHat Enterprise Linux WS Extras 3
  • RedHat Enterprise Linux WS Extras 4

References:

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.