Die siberas GmbH ein auf Sicherheitsanalysen und Penetrationstests spezialisiertes Beratungsunternehmen, welches Sie herstellerunabhängig und kompetent im Bereich IT-Sicherheit berät.
Adobe Reader ICC Parsing Remote Code Execution Vulnerability
Reference ID: SSA-1102Affected products/versions: Adobe Reader 10.0 and <= 9.4.1
Versions 10.0 and <= 9.4.1 of Adobe Reader are vulnerable to a Heap Overflow vulnerability while parsing a specially-crafted embedded ICC stream in a PDF file. It is possible to cause an Integer Overflow due to multiple multiplications of controlled byte values. This can lead to the allocation of a small-sized buffer which will be overflown afterwards.
The vulnerability can lead to code execution under the context of the currently logged in user.
References:
ZDI-11-073
CVE-2011-0598
Advisory by Adobe