HTTP: Adobe Acrobat Reader Malicious PDF File Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Adobe Acrobat Reader. A successful attack can lead to arbitrary code execution.

Extended Description

Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document, as exploited in the wild in February 2013.

Affected Products

Redhat enterprise_linux_server

References

BugTraq: 57931

CVE: CVE-2013-0640

Short Name
HTTP:STC:ADOBE:READER-MAL-PDF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Acrobat Adobe CVE-2013-0640 CVE-2013-0641 Code Execution File Malicious PDF Reader Remote bid:57931
Release Date
02/25/2013
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3724
False Positive
Unknown
Vendors

Opensuse

Suse

Redhat

CVSS Score

9.3

Found a potential security threat?