exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Adobe Acrobat / Reader U3D Integer Overflow

Adobe Acrobat / Reader U3D Integer Overflow
Posted Jan 16, 2010
Authored by Nicolas Joly | Site vupen.com

VUPEN Vulnerability Research Team discovered a critical vulnerability affecting Adobe Acrobat and Reader. This vulnerability is caused by an integer overflow error in the U3D module when processing malformed data, which could be exploited by attackers to execute arbitrary code by tricking a user into opening a specially crafted PDF document. Versions 9.2 and below are affected.

tags | advisory, overflow, arbitrary
advisories | CVE-2009-3959
SHA-256 | 1aa7c92056fdf6a92efa15fd83bcd82f7d102180f06fa7e2c1d656f2e3562927

Adobe Acrobat / Reader U3D Integer Overflow

Change Mirror Download
VUPEN Security Research - Adobe Acrobat and Reader U3D Integer Overflow 
Vulnerability

http://www.vupen.com/english/research.php


I. BACKGROUND
---------------------

Adobe Acrobat and Reader are the global standards for electronic document
sharing.
They are used to create, view, search, digitally sign, verify, print, and
collaborate on Adobe PDF files.


II. DESCRIPTION
---------------------

VUPEN Vulnerability Research Team discovered a critical vulnerability
affecting Adobe Acrobat and Reader.

This vulnerability is caused by an integer overflow error in the U3D module
when processing malformed data, which could be exploited by attackers to
execute arbitrary code by tricking a user into opening a specially crafted
PDF document.


III. AFFECTED PRODUCTS
--------------------------------

Adobe Reader version 9.2 and prior
Adobe Acrobat version 9.2 and prior


IV. Exploits - PoCs & Binary Analysis
----------------------------------------

In-depth binary analysis of the vulnerability and a code execution
exploit have been released by VUPEN Security through the
VUPEN Exploits & PoCs Service :

http://www.vupen.com/exploits


V. SOLUTION
----------------

Upgrade to version 9.3 or 8.2.


VI. CREDIT
--------------

The vulnerability was discovered by Nicolas JOLY of VUPEN Security


VII. ABOUT VUPEN Security
---------------------------------

VUPEN is a leading IT security research company providing vulnerability
management services to allow enterprises and organizations to eliminate
vulnerabilities before they can be exploited, ensure security policy
compliance and meaningfully measure and manage risks.

VUPEN also provides research services for security vendors (antivirus,
IDS, IPS,etc) to supplement their internal vulnerability research efforts
and quickly develop vulnerability-based and exploit-based signatures,
rules, and filters, and proactively protect their customers against
potential threats.

* VUPEN Vulnerability Notification Service:

http://www.vupen.com/english/services

* VUPEN Exploits and In-Depth Vulnerability Analysis:

http://www.vupen.com/exploits


VIII. REFERENCES
----------------------

http://www.vupen.com/english/advisories/2010/0103
http://www.adobe.com/support/security/bulletins/apsb10-02.html


IX. DISCLOSURE TIMELINE
-----------------------------------

2009-11-06 - Vendor notified
2009-11-06 - Vendor response
2009-12-10 - Status update received
2010-01-07 - Status update received
2009-01-13 - Coordinated public Disclosure


Login or Register to add favorites

File Archive:

February 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    11 Files
  • 2
    Feb 2nd
    9 Files
  • 3
    Feb 3rd
    5 Files
  • 4
    Feb 4th
    0 Files
  • 5
    Feb 5th
    0 Files
  • 6
    Feb 6th
    0 Files
  • 7
    Feb 7th
    0 Files
  • 8
    Feb 8th
    0 Files
  • 9
    Feb 9th
    0 Files
  • 10
    Feb 10th
    0 Files
  • 11
    Feb 11th
    0 Files
  • 12
    Feb 12th
    0 Files
  • 13
    Feb 13th
    0 Files
  • 14
    Feb 14th
    0 Files
  • 15
    Feb 15th
    0 Files
  • 16
    Feb 16th
    0 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    0 Files
  • 20
    Feb 20th
    0 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close