Adobe Reader And Acrobat util.printf Stack Buffer Overflow

• Email
• Facebook
• 
  Twitter
• Google+
• Linkedin

  Severity: CRITICAL

  CVE Identifier: CVE-2008-2992

  Advisory Date: JUL 21, 2015

---

  DESCRIPTION

Stack-based buffer overflow in Adobe Acrobat and Reader 8.1.2 and earlier allows remote attackers to execute arbitrary code via a PDF file that calls the util.printf JavaScript function with a crafted format string argument, a related issue to CVE-2008-1104.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1003026

  Trend Micro Deep Security DPI Rule Name: 1003026 - Adobe Reader And Acrobat util.printf JavaScript Function Stack Buffer Overflow

  AFFECTED SOFTWARE AND VERSION

• Adobe Acrobat Reader 8.1.2
• Adobe Acrobat Reader 8.1.1
• Adobe Acrobat Reader 8.1
• Adobe Acrobat Reader 8.0
• Adobe Acrobat Reader 7.0.9
• Adobe Acrobat Reader 7.0.8
• Adobe Acrobat Reader 7.0.7
• Adobe Acrobat Reader 7.0.6
• Adobe Acrobat Reader 7.0.5
• Adobe Acrobat Reader 7.0.4
• Adobe Acrobat Reader 7.0.3
• Adobe Acrobat Reader 7.0.2
• Adobe Acrobat Reader 7.0.1
• Adobe Acrobat Reader 7.0
• Adobe Acrobat Reader 6.0.5
• Adobe Acrobat Reader 6.0.4
• Adobe Acrobat Reader 6.0.3
• Adobe Acrobat Reader 6.0.2
• Adobe Acrobat Reader 6.0.1
• Adobe Acrobat Reader 6.0
• Adobe Acrobat Reader 5.1
• Adobe Acrobat Reader 5.0.9
• Adobe Acrobat Reader 5.0.7
• Adobe Acrobat Reader 5.0.6
• Adobe Acrobat Reader 5.0.5
• Adobe Acrobat Reader 5.0.11
• Adobe Acrobat Reader 5.0.10
• Adobe Acrobat Reader 5.0
• Adobe Acrobat Reader 4.5
• Adobe Acrobat Reader 4.0.5c
• Adobe Acrobat Reader 4.0.5a
• Adobe Acrobat Reader 4.0.5
• Adobe Acrobat Reader 4.0
• Adobe Acrobat Reader 3.0
• Adobe Acrobat 8.1.2
• Adobe Acrobat 8.1.1
• Adobe Acrobat 8.1
• Adobe Acrobat 8.0.0
• Adobe Acrobat 7.0.9
• Adobe Acrobat 7.0.8
• Adobe Acrobat 7.0.7
• Adobe Acrobat 7.0.6
• Adobe Acrobat 7.0.4
• Adobe Acrobat 7.0.3
• Adobe Acrobat 7.0.2
• Adobe Acrobat 7.0.1
• Adobe Acrobat 7.0
• Adobe Acrobat 3.0
• Adobe Acrobat 6.0.5
• Adobe Acrobat 6.0.4
• Adobe Acrobat 6.0.3
• Adobe Acrobat 6.0.2
• Adobe Acrobat 6.0.1
• Adobe Acrobat 6.0
• Adobe Acrobat 5.0.6
• Adobe Acrobat 5.0.5
• Adobe Acrobat 5.0.10
• Adobe Acrobat 5.0
• Adobe Acrobat 4.0.5c
• Adobe Acrobat 4.0.5a
• Adobe Acrobat 4.0.5

Related Vulnerability

• Adobe Multiple Products PDF JavaScript Method Buffer Overflow

Related Malware

• TROJ_PIDIEF.AAL
• PDF_SWRORT.F
• PDF_SWORT.EA
• TROJ_PDFJSC.ADR
• TROJ_PIDIEF.ZAG
• [More]