Adobe Acrobat PDF Javascript getCosObj Memory Corruption Vulnerability
Publish Date: 21 juillet 2015
Gravité: : Critique
Identifiant(s) CVE: : CVE-2008-4813
Date du conseil: 21 juillet 2015
Description
Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allow remote attackers to execute arbitrary code via a crafted PDF document that (1) performs unspecified actions on a Collab object that trigger memory corruption, related to a GetCosObj method; or (2) contains a malformed PDF object that triggers memory corruption during parsing.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1003301
Trend Micro Deep Security DPI Rule Name: 1003301 - Adobe Acrobat PDF Font Processing Memory Corruption
Affected software and version:
- Adobe Acrobat 8.1.1
- adobe acrobat 8.1.2
- adobe reader 8.1.2