HTTP: Adobe Acrobat/Reader PDF With Universal 3D Content
This signature detects attempts to exploit a known vulnerability in Adobe Acrobat and Adobe Reader PDF format. It involves the inclusion of an embedded Universal 3D object with an externally-referenced, malformed BMP texture. This signature also detects an embedded Universal 3D object, an uncommon object to include in a PDF, which may or may not reference a malformed BMP. A successful attack can result in arbitrary code execution as the user.
Extended Description
Adobe Acrobat and Reader are prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Adobe Reader and Acrobat versions prior to 9.4.2 and 10.0.1 are affected.
Affected Products
Red_hat enterprise_linux_as_extras
Short Name
HTTP:STC:ADOBE:PDF-UNI-3D
Severity
Warning
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
3D Acrobat/Reader Adobe CVE-2011-0599 Content PDF Universal With bid:46220
Release Date
02/24/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Red_hat
Suse
Adobe
Gentoo
CVSS Score
9.3