HTTP: Adobe PDF JPXDecode Vulnerability
This signature detects attempts to exploit a known vulnerability in Adobe Acrobat software. Attackers can send malicious PDF files to victims or direct them to a hostile Web server, which if the victim interacts with these files or servers, can result in remote code execution on the victim's system.
Extended Description
Adobe Reader and Acrobat are prone to a memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code. Failed exploit attempts will likely cause denial-of-service conditions. This issue affects Reader and Acrobat 9.2 and prior versions. NOTE: This issue was previously covered in BID 37667 (Adobe Acrobat and Reader January 2010 Multiple Remote Vulnerabilities), but has been given its own record to better document it.
Affected Products
Nortel_networks self-service_media_processing_server,Red_hat enterprise_linux_as_extras
Short Name
HTTP:STC:ADOBE:PDF-JPXDECODE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Adobe CVE-2009-3955 JPXDecode PDF Vulnerability bid:37757
Release Date
01/20/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3339
False Positive
Unknown
Vendors
Red_hat
Nortel_networks
Adobe
Suse
CVSS Score
10.0