WER IST SIBERAS?

Die siberas GmbH ein auf Sicherheitsanalysen und Penetrationstests spezialisiertes Beratungsunternehmen, welches Sie herstellerunabhängig und kompetent im Bereich IT-Sicherheit berät.

KONTAKT

Adobe Reader ICC Parsing Remote Code Execution Vulnerability

Reference ID: SSA-1102
Publication date: 08.02.2011
Severity: critical
Discovered by: Sebastian Apelt

Affected products/versions: Adobe Reader 10.0 and <= 9.4.1

Versions 10.0 and <= 9.4.1 of Adobe Reader are vulnerable to a Heap Overflow vulnerability while parsing a specially-crafted embedded ICC stream in a PDF file. It is possible to cause an Integer Overflow due to multiple multiplications of controlled byte values. This can lead to the allocation of a small-sized buffer which will be overflown afterwards.

The vulnerability can lead to code execution under the context of the currently logged in user.

References:
ZDI-11-073
CVE-2011-0598
Advisory by Adobe