Adobe Acrobat and Reader CVE-2010-0195 Embedded Font Handling Remote Code Execution Vulnerability
BID:39417
Info
Adobe Acrobat and Reader CVE-2010-0195 Embedded Font Handling Remote Code Execution Vulnerability
| Bugtraq ID: | 39417 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2010-0195 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 13 2010 12:00AM |
| Updated: | Sep 07 2010 09:12PM |
| Credit: | An anonymous source via TippingPoint's Zero Day Initiative |
| Vulnerable: |
SuSE Suse Linux Enterprise Desktop 11 SuSE Suse Linux Enterprise Desktop 10 SP3 SuSE Suse Linux Enterprise Desktop 10 SP2 S.u.S.E. openSUSE 11.2 S.u.S.E. openSUSE 11.1 S.u.S.E. openSUSE 11.0 Redhat Enterprise Linux WS Extras 4 Redhat Enterprise Linux Supplementary 5 server Redhat Enterprise Linux Extras 4 Redhat Enterprise Linux ES Extras 4 Redhat Enterprise Linux Desktop Supplementary 5 client Redhat Enterprise Linux AS Extras 4 Redhat Desktop Extras 4 Gentoo Linux Adobe Reader 9.3.1 Adobe Reader 9.1.3 Adobe Reader 9.1.2 Adobe Reader 9.1.1 Adobe Reader 8.2.1 Adobe Reader 8.1.7 Adobe Reader 8.1.6 Adobe Reader 8.1.5 Adobe Reader 8.1.4 Adobe Reader 8.1.3 Adobe Reader 8.1.2 Adobe Reader 8.1.1 Adobe Reader 9.3 Adobe Reader 9.2 Adobe Reader 9.1 Adobe Reader 9.0 Adobe Reader 8.2 Adobe Reader 8.1.2 Security Updat Adobe Reader 8.1 Adobe Reader 8.0 Adobe Acrobat Standard 9.3.1 Adobe Acrobat Standard 9.1.3 Adobe Acrobat Standard 9.1.2 Adobe Acrobat Standard 8.2.1 Adobe Acrobat Standard 8.1.7 Adobe Acrobat Standard 8.1.6 Adobe Acrobat Standard 8.1.4 Adobe Acrobat Standard 8.1.3 Adobe Acrobat Standard 8.1.2 Adobe Acrobat Standard 8.1.1 Adobe Acrobat Standard 9.3 Adobe Acrobat Standard 9.2 Adobe Acrobat Standard 9.1 Adobe Acrobat Standard 9 Adobe Acrobat Standard 8.2 Adobe Acrobat Standard 8.1 Adobe Acrobat Standard 8.0 Adobe Acrobat Professional 9.3.1 Adobe Acrobat Professional 9.1.3 Adobe Acrobat Professional 9.1.2 Adobe Acrobat Professional 8.2.1 Adobe Acrobat Professional 8.1.7 Adobe Acrobat Professional 8.1.6 Adobe Acrobat Professional 8.1.4 Adobe Acrobat Professional 8.1.3 Adobe Acrobat Professional 8.1.2 Adobe Acrobat Professional 8.1.1 Adobe Acrobat Professional 9.3 Adobe Acrobat Professional 9.2 Adobe Acrobat Professional 9.1 Adobe Acrobat Professional 9 Adobe Acrobat Professional 8.2 Adobe Acrobat Professional 8.1.2 Security Updat Adobe Acrobat Professional 8.1 Adobe Acrobat 9.3.1 Adobe Acrobat 9.1.1 Adobe Acrobat 9.3 Adobe Acrobat 9.2 |
| Not Vulnerable: |
Adobe Reader 9.3.2 Adobe Reader 8.2.2 Adobe Acrobat Standard 9.3.2 Adobe Acrobat Standard 8.2.2 Adobe Acrobat Professional 9.3.2 Adobe Acrobat Professional 8.2.2 Adobe Acrobat 9.3.2 Adobe Acrobat 8.2.2 |
Discussion
Adobe Acrobat and Reader CVE-2010-0195 Embedded Font Handling Remote Code Execution Vulnerability
Adobe Acrobat and Reader are prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
The following products are affected:
Adobe Reader 9.3.1 and prior for Windows, Macintosh, and UNIX
Adobe Acrobat 9.3.1 and prior for Windows and Macintosh
Adobe Reader 8.2.1 and prior for Windows and Macintosh
Acrobat 8.2.1 and prior for Windows and Macintosh
NOTE: This issue was originally documented in BID 39329 (Adobe Acrobat and Reader April 2010 Multiple Remote Vulnerabilities); it has been assigned its own BID to better document the vulnerability.
Adobe Acrobat and Reader are prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
The following products are affected:
Adobe Reader 9.3.1 and prior for Windows, Macintosh, and UNIX
Adobe Acrobat 9.3.1 and prior for Windows and Macintosh
Adobe Reader 8.2.1 and prior for Windows and Macintosh
Acrobat 8.2.1 and prior for Windows and Macintosh
NOTE: This issue was originally documented in BID 39329 (Adobe Acrobat and Reader April 2010 Multiple Remote Vulnerabilities); it has been assigned its own BID to better document the vulnerability.
Exploit / POC
Adobe Acrobat and Reader CVE-2010-0195 Embedded Font Handling Remote Code Execution Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Adobe Acrobat and Reader CVE-2010-0195 Embedded Font Handling Remote Code Execution Vulnerability
Solution:
Updates are available. Please see the references for more information.
S.u.S.E. openSUSE 11.0
S.u.S.E. openSUSE 11.1
S.u.S.E. openSUSE 11.2
Solution:
Updates are available. Please see the references for more information.
S.u.S.E. openSUSE 11.0
-
SuSE acroread-9.3.2-0.1.i586.rpm
http://download.opensuse.org/update/11.0/rpm/i586/acroread-9.3.2-0.1.i 586.rpm -
SuSE acroread-cmaps-9.3.2-0.1.noarch.rpm
http://download.opensuse.org/update/11.0/rpm/noarch/acroread-cmaps-9.3 .2-0.1.noarch.rpm -
SuSE acroread-fonts-ja-9.3.2-0.1.noarch.rpm
http://download.opensuse.org/update/11.0/rpm/noarch/acroread-fonts-ja- 9.3.2-0.1.noarch.rpm -
SuSE acroread-fonts-ko-9.3.2-0.1.noarch.rpm
http://download.opensuse.org/update/11.0/rpm/noarch/acroread-fonts-ko- 9.3.2-0.1.noarch.rpm -
SuSE acroread-fonts-zh_CN-9.3.2-0.1.noarch.rpm
http://download.opensuse.org/update/11.0/rpm/noarch/acroread-fonts-zh_ CN-9.3.2-0.1.noarch.rpm -
SuSE acroread-fonts-zh_TW-9.3.2-0.1.noarch.rpm
http://download.opensuse.org/update/11.0/rpm/noarch/acroread-fonts-zh_ TW-9.3.2-0.1.noarch.rpm
S.u.S.E. openSUSE 11.1
-
SuSE acroread-9.3.2-0.1.1.i586.rpm
http://download.opensuse.org/update/11.1/rpm/i586/acroread-9.3.2-0.1.1 .i586.rpm -
SuSE acroread-cmaps-9.3.2-0.1.1.noarch.rpm
http://download.opensuse.org/update/11.1/rpm/noarch/acroread-cmaps-9.3 .2-0.1.1.noarch.rpm -
SuSE acroread-fonts-ja-9.3.2-0.1.1.noarch.rpm
http://download.opensuse.org/update/11.1/rpm/noarch/acroread-fonts-ja- 9.3.2-0.1.1.noarch.rpm -
SuSE acroread-fonts-ko-9.3.2-0.1.1.noarch.rpm
http://download.opensuse.org/update/11.1/rpm/noarch/acroread-fonts-ko- 9.3.2-0.1.1.noarch.rpm -
SuSE acroread-fonts-zh_CN-9.3.2-0.1.1.noarch.rpm
http://download.opensuse.org/update/11.1/rpm/noarch/acroread-fonts-zh_ CN-9.3.2-0.1.1.noarch.rpm -
SuSE acroread-fonts-zh_TW-9.3.2-0.1.1.noarch.rpm
http://download.opensuse.org/update/11.1/rpm/noarch/acroread-fonts-zh_ TW-9.3.2-0.1.1.noarch.rpm
S.u.S.E. openSUSE 11.2
-
SuSE acroread-9.3.2-0.2.1.i586.rpm
http://download.opensuse.org/update/11.2/rpm/i586/acroread-9.3.2-0.2.1 .i586.rpm -
SuSE acroread-cmaps-9.3.2-0.2.1.noarch.rpm
http://download.opensuse.org/update/11.2/rpm/noarch/acroread-cmaps-9.3 .2-0.2.1.noarch.rpm -
SuSE acroread-fonts-ja-9.3.2-0.2.1.noarch.rpm
http://download.opensuse.org/update/11.2/rpm/noarch/acroread-fonts-ja- 9.3.2-0.2.1.noarch.rpm -
SuSE acroread-fonts-ko-9.3.2-0.2.1.noarch.rpm
http://download.opensuse.org/update/11.2/rpm/noarch/acroread-fonts-ko- 9.3.2-0.2.1.noarch.rpm -
SuSE acroread-fonts-zh_CN-9.3.2-0.2.1.noarch.rpm
http://download.opensuse.org/update/11.2/rpm/noarch/acroread-fonts-zh_ CN-9.3.2-0.2.1.noarch.rpm -
SuSE acroread-fonts-zh_TW-9.3.2-0.2.1.noarch.rpm
http://download.opensuse.org/update/11.2/rpm/noarch/acroread-fonts-zh_ TW-9.3.2-0.2.1.noarch.rpm
References
Adobe Acrobat and Reader CVE-2010-0195 Embedded Font Handling Remote Code Execution Vulnerability
References:
References:
- Adobe Homepage (Adobe)
- Adobe Security Advisory APSB10-09 (Adobe)
- ZDI-10-071: Adobe Reader TrueType Font Handling Remote Code Execution Vulnerabil (Zero Day Initiative)