HTTP: Adobe Acrobat Reader Time-of-check Time-of-use (TOCTOU) Race Condition
This signature detects attempts to exploit a known vulnerability against Adobe Acrobat Reader. A successful attack can lead to security bypass.
Extended Description
Acrobat Reader versions 20.005.30636, 24.002.21005, 24.001.30159, 20.005.30655, 24.002.20965, 24.002.20964, 24.001.30123, 24.003.20054 and earlier are affected by a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability that could lead to arbitrary code execution. This vulnerability arises when the timing of actions changes the state of a resource between the checking of a condition and the use of the resource, allowing an attacker to manipulate the resource in a harmful way. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
References
CVE: CVE-2024-39420
Short Name
HTTP:STC:ADOBE:CVE2024-39420-SB
Severity
Major
Recommended
True
Recommended Action
None
Category
HTTP
Keywords
(TOCTOU) Acrobat Adobe CVE-2024-39420 Condition Race Reader Time-of-check Time-of-use
Release Date
09/26/2024
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3746
False Positive
Unknown