Adobe Acrobat and Reader BMP Data Remote Buffer Overflow Vulnerability
BID:39507
Info
Adobe Acrobat and Reader BMP Data Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 39507 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2010-0203 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 13 2010 12:00AM |
| Updated: | Mar 19 2015 09:24AM |
| Credit: | Nicolas Joly of VUPEN Vulnerability Research Team |
| Vulnerable: |
SuSE SUSE Linux Enterprise Desktop 11 SuSE SUSE Linux Enterprise Desktop 10 SP3 SuSE SUSE Linux Enterprise Desktop 10 SP2 S.u.S.E. openSUSE 11.2 S.u.S.E. openSUSE 11.1 S.u.S.E. openSUSE 11.0 RedHat Enterprise Linux WS Extras 4 RedHat Enterprise Linux Extras 4 RedHat Enterprise Linux ES Extras 4 RedHat Enterprise Linux AS Extras 4 RedHat Desktop Extras 4 Red Hat Enterprise Linux Supplementary 5 server Red Hat Enterprise Linux Desktop Supplementary 5 client Gentoo Linux Adobe Reader 9.3.1 Adobe Reader 9.1.3 Adobe Reader 9.1.2 Adobe Reader 9.1.1 Adobe Reader 8.2.1 Adobe Reader 8.1.7 Adobe Reader 8.1.6 Adobe Reader 8.1.5 Adobe Reader 8.1.4 Adobe Reader 8.1.3 Adobe Reader 8.1.2 Adobe Reader 8.1.1 Adobe Reader 9.3 Adobe Reader 9.2 Adobe Reader 9.1 Adobe Reader 9 Adobe Reader 8.2 Adobe Reader 8.1.2 Security Updat Adobe Reader 8.1 Adobe Reader 8.0 Adobe Acrobat Standard 9.3.1 Adobe Acrobat Standard 9.1.3 Adobe Acrobat Standard 9.1.2 Adobe Acrobat Standard 8.2.1 Adobe Acrobat Standard 8.1.7 Adobe Acrobat Standard 8.1.6 Adobe Acrobat Standard 8.1.4 Adobe Acrobat Standard 8.1.3 Adobe Acrobat Standard 8.1.2 Adobe Acrobat Standard 8.1.1 Adobe Acrobat Standard 9.3 Adobe Acrobat Standard 9.2 Adobe Acrobat Standard 9.1 Adobe Acrobat Standard 9 Adobe Acrobat Standard 8.2 Adobe Acrobat Standard 8.1 Adobe Acrobat Standard 8.0 Adobe Acrobat Professional 9.3.1 Adobe Acrobat Professional 8.2.1 Adobe Acrobat Professional 8.1.7 Adobe Acrobat Professional 8.1.6 Adobe Acrobat Professional 8.1.4 Adobe Acrobat Professional 8.1.3 Adobe Acrobat Professional 8.1.2 Adobe Acrobat Professional 8.1.1 Adobe Acrobat Professional 9.3 Adobe Acrobat Professional 8.2 Adobe Acrobat Professional 8.1.2 Security Updat Adobe Acrobat Professional 8.1 Adobe Acrobat Professional 8.0 Adobe Acrobat 9.3.1 Adobe Acrobat 9.1.1 Adobe Acrobat 9.3 Adobe Acrobat 9.2 |
| Not Vulnerable: |
Adobe Reader 9.3.2 Adobe Reader 8.2.2 Adobe Acrobat Standard 9.3.2 Adobe Acrobat Standard 8.2.2 Adobe Acrobat Professional 9.3.2 Adobe Acrobat Professional 8.2.2 Adobe Acrobat 9.3.2 Adobe Acrobat 8.2.2 |
Discussion
Adobe Acrobat and Reader BMP Data Remote Buffer Overflow Vulnerability
Adobe Acrobat and Reader are prone to a remote buffer-overflow vulnerability.
Attackers can exploit this issue to execute arbitrary code in the context of the user running an affected application or to cause a denial-of-service condition.
The following products are affected:
Adobe Reader 9.3.1 and prior for Windows, Macintosh, and UNIX
Adobe Acrobat 9.3.1 and prior for Windows and Macintosh
Adobe Reader 8.2.1 and prior for Windows and Macintosh
Acrobat 8.2.1 and prior for Windows and Macintosh
Note: This vulnerability was previously documented in BID 39329 (Adobe Acrobat and Reader April 2010 Multiple Remote Vulnerabilities) but has been given its own record to better document the issue.
Adobe Acrobat and Reader are prone to a remote buffer-overflow vulnerability.
Attackers can exploit this issue to execute arbitrary code in the context of the user running an affected application or to cause a denial-of-service condition.
The following products are affected:
Adobe Reader 9.3.1 and prior for Windows, Macintosh, and UNIX
Adobe Acrobat 9.3.1 and prior for Windows and Macintosh
Adobe Reader 8.2.1 and prior for Windows and Macintosh
Acrobat 8.2.1 and prior for Windows and Macintosh
Note: This vulnerability was previously documented in BID 39329 (Adobe Acrobat and Reader April 2010 Multiple Remote Vulnerabilities) but has been given its own record to better document the issue.
Exploit / POC
Adobe Acrobat and Reader BMP Data Remote Buffer Overflow Vulnerability
A working commercial exploit is available through VUPEN Security - Exploit and PoCs Service. This exploit is not otherwise publicly available or known to be circulating in the wild.
A working commercial exploit is available through VUPEN Security - Exploit and PoCs Service. This exploit is not otherwise publicly available or known to be circulating in the wild.
Solution / Fix
Adobe Acrobat and Reader BMP Data Remote Buffer Overflow Vulnerability
Solution:
Updates are available. Please see the references for more information.
S.u.S.E. openSUSE 11.0
S.u.S.E. openSUSE 11.1
S.u.S.E. openSUSE 11.2
Solution:
Updates are available. Please see the references for more information.
S.u.S.E. openSUSE 11.0
-
SuSE acroread-9.3.2-0.1.i586.rpm
http://download.opensuse.org/update/11.0/rpm/i586/acroread-9.3.2-0.1.i 586.rpm -
SuSE acroread-cmaps-9.3.2-0.1.noarch.rpm
http://download.opensuse.org/update/11.0/rpm/noarch/acroread-cmaps-9.3 .2-0.1.noarch.rpm -
SuSE acroread-fonts-ja-9.3.2-0.1.noarch.rpm
http://download.opensuse.org/update/11.0/rpm/noarch/acroread-fonts-ja- 9.3.2-0.1.noarch.rpm -
SuSE acroread-fonts-ko-9.3.2-0.1.noarch.rpm
http://download.opensuse.org/update/11.0/rpm/noarch/acroread-fonts-ko- 9.3.2-0.1.noarch.rpm -
SuSE acroread-fonts-zh_CN-9.3.2-0.1.noarch.rpm
http://download.opensuse.org/update/11.0/rpm/noarch/acroread-fonts-zh_ CN-9.3.2-0.1.noarch.rpm -
SuSE acroread-fonts-zh_TW-9.3.2-0.1.noarch.rpm
http://download.opensuse.org/update/11.0/rpm/noarch/acroread-fonts-zh_ TW-9.3.2-0.1.noarch.rpm
S.u.S.E. openSUSE 11.1
-
SuSE acroread-9.3.2-0.1.1.i586.rpm
http://download.opensuse.org/update/11.1/rpm/i586/acroread-9.3.2-0.1.1 .i586.rpm -
SuSE acroread-cmaps-9.3.2-0.1.1.noarch.rpm
http://download.opensuse.org/update/11.1/rpm/noarch/acroread-cmaps-9.3 .2-0.1.1.noarch.rpm -
SuSE acroread-fonts-ja-9.3.2-0.1.1.noarch.rpm
http://download.opensuse.org/update/11.1/rpm/noarch/acroread-fonts-ja- 9.3.2-0.1.1.noarch.rpm -
SuSE acroread-fonts-ko-9.3.2-0.1.1.noarch.rpm
http://download.opensuse.org/update/11.1/rpm/noarch/acroread-fonts-ko- 9.3.2-0.1.1.noarch.rpm -
SuSE acroread-fonts-zh_CN-9.3.2-0.1.1.noarch.rpm
http://download.opensuse.org/update/11.1/rpm/noarch/acroread-fonts-zh_ CN-9.3.2-0.1.1.noarch.rpm -
SuSE acroread-fonts-zh_TW-9.3.2-0.1.1.noarch.rpm
http://download.opensuse.org/update/11.1/rpm/noarch/acroread-fonts-zh_ TW-9.3.2-0.1.1.noarch.rpm
S.u.S.E. openSUSE 11.2
-
SuSE acroread-9.3.2-0.2.1.i586.rpm
http://download.opensuse.org/update/11.2/rpm/i586/acroread-9.3.2-0.2.1 .i586.rpm -
SuSE acroread-cmaps-9.3.2-0.2.1.noarch.rpm
http://download.opensuse.org/update/11.2/rpm/noarch/acroread-cmaps-9.3 .2-0.2.1.noarch.rpm -
SuSE acroread-fonts-ja-9.3.2-0.2.1.noarch.rpm
http://download.opensuse.org/update/11.2/rpm/noarch/acroread-fonts-ja- 9.3.2-0.2.1.noarch.rpm -
SuSE acroread-fonts-ko-9.3.2-0.2.1.noarch.rpm
http://download.opensuse.org/update/11.2/rpm/noarch/acroread-fonts-ko- 9.3.2-0.2.1.noarch.rpm -
SuSE acroread-fonts-zh_CN-9.3.2-0.2.1.noarch.rpm
http://download.opensuse.org/update/11.2/rpm/noarch/acroread-fonts-zh_ CN-9.3.2-0.2.1.noarch.rpm -
SuSE acroread-fonts-zh_TW-9.3.2-0.2.1.noarch.rpm
http://download.opensuse.org/update/11.2/rpm/noarch/acroread-fonts-zh_ TW-9.3.2-0.2.1.noarch.rpm
References
Adobe Acrobat and Reader BMP Data Remote Buffer Overflow Vulnerability
References:
References:
- Adobe Homepage (Adobe)
- Adobe Security Advisory APSB10-09 (Adobe)
- VUPEN Security Research - Adobe Acrobat and Reader BMP Data Buffer Overflow Vuln ("VUPEN Web Research"