HTTP: Adobe Reader and Acrobat util.printf Stack Buffer Overflow
This signature detects attempts to exploit a known flaw in Adobe Reader and Acrobat. A successful attack could allow the attacker to execute arbitrary code on the targeted system. Failed exploit attempts could result in a denial of service condition.
Extended Description
Adobe Reader is prone to a stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the application or crash the application, denying service to legitimate users.
Affected Products
Nortel_networks self-service_speech_server,Adobe reader
Short Name
HTTP:STC:ADOBE:PDF-UTILPRINTF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Acrobat Adobe Buffer CVE-2008-2992 Overflow Reader Stack and bid:30035 util.printf
Release Date
10/18/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Adobe
Gentoo
Sun
Turbolinux
Avaya
Nortel_networks
CVSS Score
9.3