HTTP: Adobe Acrobat and Reader JPEG2000 Parsing Out of Bounds Read1
This signature detects an attempt to exploit an out of bounds read vulnerability which has been reported in the JPEG2000 component of Adobe Acrobat and Acrobat Reader. Successful exploitation could result in information disclosure which could be used to further compromise the target system.
Extended Description
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
References
CVE: CVE-2018-4949
Short Name
HTTP:STC:ADOBE:JPEG2000-OB-ID
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Acrobat Adobe Bounds CVE-2018-4949 JPEG2000 Out Parsing Read1 Reader and of
Release Date
06/07/2018
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3377
False Positive
Unknown
CVSS Score
5.0