Adobe Reader SING Table Parsing Vulnerability

  Severity: CRITICAL
  CVE Identifier: CVE-2010-2883
  Advisory Date: JUL 21, 2015

  DESCRIPTION

Stack-based buffer overflow in CoolType.dll in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PDF document with a long field in a Smart INdependent Glyphlets (SING) table in a TTF font, as exploited in the wild in September 2010. NOTE: some of these details are obtained from third party information.

  TREND MICRO PROTECTION INFORMATION

Per: http://www.adobe.com/support/security/advisories/apsa10-02.html 'Adobe is in the process of evaluating the schedule for an update to resolve this vulnerability.'

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1004393
  Trend Micro Deep Security DPI Rule Name: 1004393 - Adobe Reader SING Table Parsing Vulnerability

  AFFECTED SOFTWARE AND VERSION

  • Adobe Acrobat 8.0.0
  • Adobe Acrobat 8.1
  • Adobe Acrobat 8.1.1
  • Adobe Acrobat 8.1.2
  • Adobe Acrobat 8.1.3
  • Adobe Acrobat 8.1.4
  • Adobe Acrobat 8.1.5
  • Adobe Acrobat 8.1.6
  • Adobe Acrobat 8.1.7
  • Adobe Acrobat 8.2
  • Adobe Acrobat 8.2.1
  • Adobe Acrobat 8.2.2
  • Adobe Acrobat 9.0
  • Adobe Acrobat 9.1
  • Adobe Acrobat 9.1.1
  • Adobe Acrobat 9.1.2
  • Adobe Acrobat 9.1.3
  • Adobe Acrobat 9.2
  • Adobe Acrobat 9.3
  • Adobe Acrobat 9.3.1
  • Adobe Acrobat 9.3.2
  • Adobe Acrobat 9.3.3
  • Adobe Acrobat 9.3.4
  • Adobe Acrobat Reader 8.0
  • Adobe Acrobat Reader 8.1
  • Adobe Acrobat Reader 8.1.1
  • Adobe Acrobat Reader 8.1.2
  • Adobe Acrobat Reader 8.1.4
  • Adobe Acrobat Reader 8.1.5
  • Adobe Acrobat Reader 8.1.6
  • Adobe Acrobat Reader 8.1.7
  • Adobe Acrobat Reader 8.2.1
  • Adobe Acrobat Reader 8.2.2
  • Adobe Acrobat Reader 8.2.3
  • Adobe Acrobat Reader 8.2.4
  • Adobe Acrobat Reader 9.0
  • Adobe Acrobat Reader 9.1
  • Adobe Acrobat Reader 9.1.1
  • Adobe Acrobat Reader 9.1.2
  • Adobe Acrobat Reader 9.1.3
  • Adobe Acrobat Reader 9.2
  • Adobe Acrobat Reader 9.3
  • Adobe Acrobat Reader 9.3.1
  • Adobe Acrobat Reader 9.3.2
  • Adobe Acrobat Reader 9.3.3
  • Adobe Acrobat Reader 9.3.4
  • adobe acrobat 8.2.4
  • adobe acrobat_reader 8.0
  • adobe acrobat_reader 8.1
  • adobe acrobat_reader 8.1.1
  • adobe acrobat_reader 8.1.2
  • adobe acrobat_reader 8.1.4
  • adobe acrobat_reader 8.1.5
  • adobe acrobat_reader 8.1.6
  • adobe acrobat_reader 8.1.7
  • adobe acrobat_reader 8.2.1
  • adobe acrobat_reader 8.2.2
  • adobe acrobat_reader 8.2.3
  • adobe acrobat_reader 8.2.4
  • adobe acrobat_reader 9.0
  • adobe acrobat_reader 9.1
  • adobe acrobat_reader 9.1.1
  • adobe acrobat_reader 9.1.2
  • adobe acrobat_reader 9.1.3
  • adobe acrobat_reader 9.2
  • adobe acrobat_reader 9.3
  • adobe acrobat_reader 9.3.1
  • adobe acrobat_reader 9.3.2
  • adobe acrobat_reader 9.3.3
  • adobe acrobat_reader 9.3.4