Adobe Acrobat and Reader (CVE-2011-4369) Memory Corruption Vulnerability
BID:51092
Info
Adobe Acrobat and Reader (CVE-2011-4369) Memory Corruption Vulnerability
| Bugtraq ID: | 51092 |
| Class: | Unknown |
| CVE: |
CVE-2011-4369 |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 16 2011 12:00AM |
| Updated: | Jun 20 2013 09:39AM |
| Credit: | Lockheed Martin CIRT, MITRE and members of the Defense Security Information Exchange |
| Vulnerable: |
SuSE SUSE Linux Enterprise Desktop 11 SP1 SuSE SUSE Linux Enterprise Desktop 10 SP4 SuSE openSUSE 11.4 SuSE openSUSE 11.3 RedHat Enterprise Linux WS Extras 4 RedHat Enterprise Linux Extras 4 RedHat Enterprise Linux ES Extras 4 RedHat Enterprise Linux AS Extras 4 RedHat Desktop Extras 4 Red Hat Enterprise Linux Workstation Supplementary 6 Red Hat Enterprise Linux Supplementary 5 server Red Hat Enterprise Linux Server Supplementary 6 Red Hat Enterprise Linux Desktop Supplementary 6 Red Hat Enterprise Linux Desktop Supplementary 5 client Gentoo Linux Adobe Reader 10.1.1 Adobe Reader 9.4.6 Adobe Reader 9.3.4 Adobe Reader 9.3.3 Adobe Reader 9.3.2 Adobe Reader 9.3.1 Adobe Reader 9.1.3 Adobe Reader 9.1.2 Adobe Reader 9.1.1 Adobe Reader 9.4.5 Adobe Reader 9.4.4 Adobe Reader 9.4.3 Adobe Reader 9.4.2 Adobe Reader 9.4.1 Adobe Reader 9.4 Adobe Reader 9.3 Adobe Reader 9.2 Adobe Reader 9.1 Adobe Reader 9 Adobe Reader 10.1 Adobe Reader 10.0.3 Adobe Reader 10.0.2 Adobe Reader 10.0.1 Adobe Reader 10.0 Adobe Acrobat Standard 10.1.1 Adobe Acrobat Standard 9.4.6 Adobe Acrobat Standard 9.3.4 Adobe Acrobat Standard 9.3.3 Adobe Acrobat Standard 9.3.2 Adobe Acrobat Standard 9.3.1 Adobe Acrobat Standard 9.1.3 Adobe Acrobat Standard 9.1.2 Adobe Acrobat Standard 9.4.5 Adobe Acrobat Standard 9.4.4 Adobe Acrobat Standard 9.4.3 Adobe Acrobat Standard 9.4.2 Adobe Acrobat Standard 9.4.1 Adobe Acrobat Standard 9.4 Adobe Acrobat Standard 9.3 Adobe Acrobat Standard 9.2 Adobe Acrobat Standard 9.1 Adobe Acrobat Standard 10.1 Adobe Acrobat Standard 10.0.3 Adobe Acrobat Standard 10.0.2 Adobe Acrobat Standard 10.0.1 Adobe Acrobat Standard 10.0 Adobe Acrobat Professional 10.1.1 Adobe Acrobat Professional 9.4.6 Adobe Acrobat Professional 9.3.4 Adobe Acrobat Professional 9.3.3 Adobe Acrobat Professional 9.3.2 Adobe Acrobat Professional 9.3.1 Adobe Acrobat Professional 9.1.3 Adobe Acrobat Professional 9.1.2 Adobe Acrobat Professional 9.4.5 Adobe Acrobat Professional 9.4.4 Adobe Acrobat Professional 9.4.3 Adobe Acrobat Professional 9.4.2 Adobe Acrobat Professional 9.4.1 Adobe Acrobat Professional 9.4 Adobe Acrobat Professional 9.3 Adobe Acrobat Professional 9.2 Adobe Acrobat Professional 9.1 Adobe Acrobat Professional 10.1 Adobe Acrobat Professional 10.0.3 Adobe Acrobat Professional 10.0.2 Adobe Acrobat Professional 10.0.1 Adobe Acrobat Professional 10.0 Adobe Acrobat 10.1.1 Adobe Acrobat 9.4.6 Adobe Acrobat 9.3.3 Adobe Acrobat 9.3.2 Adobe Acrobat 9.3.1 Adobe Acrobat 9.1.1 Adobe Acrobat 8.2.4 Adobe Acrobat 9.4.5 Adobe Acrobat 9.4.4 Adobe Acrobat 9.4.3 Adobe Acrobat 9.4.2 Adobe Acrobat 9.4.1 Adobe Acrobat 9.4 Adobe Acrobat 9.3 Adobe Acrobat 9.2 Adobe Acrobat 9 Adobe Acrobat 10.1 Adobe Acrobat 10.0.3 Adobe Acrobat 10.0.2 Adobe Acrobat 10.0.1 Adobe Acrobat 10.0 |
| Not Vulnerable: |
Adobe Reader 10.1.2 Adobe Reader 9.4.7 Adobe Reader 9.5 Adobe Acrobat Standard 10.1.2 Adobe Acrobat Standard 9.4.7 Adobe Acrobat Standard 9.5 Adobe Acrobat Professional 10.1.2 Adobe Acrobat Professional 9.4.7 Adobe Acrobat Professional 9.5 Adobe Acrobat 10.1.2 Adobe Acrobat 9.4.7 Adobe Acrobat 9.5 |
Discussion
Adobe Acrobat and Reader (CVE-2011-4369) Memory Corruption Vulnerability
Adobe Acrobat and Reader are prone to a remote memory corruption vulnerability.
Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause denial-of-service conditions.
Adobe Acrobat and Reader are prone to a remote memory corruption vulnerability.
Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause denial-of-service conditions.
Exploit / POC
Adobe Acrobat and Reader (CVE-2011-4369) Memory Corruption Vulnerability
The vendor reports this issue is being actively exploited in the wild.
The vendor reports this issue is being actively exploited in the wild.
Solution / Fix
Adobe Acrobat and Reader (CVE-2011-4369) Memory Corruption Vulnerability
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
Adobe Acrobat and Reader (CVE-2011-4369) Memory Corruption Vulnerability
References:
References: