Trend Micro Security

Adobe Acrobat PDF Javascript getCosObj Memory Corruption Vulnerability

  危険度: : 緊急
  CVE識別番号: CVE-2008-4813

  概要

Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allow remote attackers to execute arbitrary code via a crafted PDF document that (1) performs unspecified actions on a Collab object that trigger memory corruption, related to a GetCosObj method; or (2) contains a malformed PDF object that triggers memory corruption during parsing.

  トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1003301
  Trend Micro Deep Security DPI Rule Name: 1003301 - Adobe Acrobat PDF Font Processing Memory Corruption

  影響を受けるソフトウェア

  • Adobe Acrobat 8.1.1
  • adobe acrobat 8.1.2
  • adobe reader 8.1.2