Vulnerability in U3D component in Adobe Reader and Acrobat
Data de publicação: 04 março 2014
Schweregrad: : Crítico
Identificador(es) CVE: : CVE-2011-2462
Data do informe: 09 dezembro 2011
Descrição
A critical vulnerability has been identified in the 10.1.1 version of Adobe Reader X and earlier versions for Windows and Macintosh, Adobe Reader 9.4.6 and earlier 9.x versions for UNIX, and Adobe Acrobat X(10.1.1) and earlier versions for Windows and Macintosh. When exploited this vulnerability could cause a crash and potentially allow an attacker to take control of the affected system.
Exposição das informações
Trend Micro Deep Security shields the following vulnerabilities using the specified rules. Trend Micro customers using OfficeScan with the Intrusion Defense Firewall plugin are also protected from attacks using these vulnerabilities.
Adobe Bulletin ID | Vulnerability ID | Rule Number & Title | Deep Security Pattern Version | Deep Security Pattern Release Date |
---|---|---|---|---|
APSA11-04 | CVE-2011-2462 | 1004871 - Adobe Acrobat Reader U3D Component Memory Corruption Vulnerability (CVE-2011-2462) | 11-035 | Dec 13, 2011 |
APSA11-04 | CVE-2011-2462 | 1004873 - Adobe Acrobat Reader U3D Component Memory Corruption (CVE-2011-2462) | 11-035 | Dec 13, 2011 |
Solução
Software infectado e versão:
- Adobe Reader X (10.1.1) and earlier 10.x versions for Windows and Macintosh
- Adobe Reader 9.4.6 and earlier 9.x versions for Windows
- Macintosh and UNIX
- Adobe Acrobat X (10.1.1) and earlier 10.x versions for Windows and Macintosh
- Adobe Acrobat 9.4.6 and earlier 9.x versions for Windows and Macintosh