HTTP: Adobe Reader AcroForm Null Pointer Dereference Attempt
This signature detects attempts to exploit a known vulnerability against Adobe Reader. A successful attack can lead to arbitrary code execution.
Extended Description
Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to cause a denial of service (NULL pointer dereference) via unspecified vectors, a different vulnerability than CVE-2015-4444.
References
CVE: CVE-2015-4443
Short Name
HTTP:STC:ADOBE:ACROFORM-NULL-CE
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
AcroForm Adobe Attempt CVE-2015-4443 CVE-2015-4444 Dereference Null Pointer Reader
Release Date
09/08/2015
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3417
False Positive
Unknown
CVSS Score
5.0