Security Advisory
  • Adobe Reader/Acrobat Multiple Vulnerabilities Reported Date: 13-01-10
Rated Level: Critical
Impact: System Access,Remotely Exploitable
Affected Software: Adobe Acrobat 3D 8.x
Adobe Acrobat 8 Professional
Adobe Acrobat 8.x
Adobe Acrobat 9.x
Adobe Reader 8.x
Adobe Reader 9.x
Description: Some vulnerabilities have been reported in Adobe Reader and Acrobat, which can be exploited by malicious people to compromise a user's system.

1) An error in the implementation of the "Doc.media.newPlayer()" JavaScript method can be exploited to corrupt memory and execute arbitrary code via a specially crafted PDF file.

NOTE: This vulnerability is currently being actively exploited.

2) An array indexing error exists in 3difr.x3d when processing U3D CLOD Mesh Declaration blocks. This can potentially be exploited to corrupt memory and execute arbitrary code via a PDF file containing a specially crafted U3D model.

3) An error in the 3D implementation when loading DLLs can be exploited to potentially execute arbitrary code.

4) A sign extension error exists when processing a Jp2c stream of a JpxDecode data stream. This can be exploited to corrupt memory and potentially execute arbitrary code via a specially crafted JPC_MS_RGN marker.

5) An unspecified error can be exploited to alter the security level and inject certain script content.

6) An integer overflow error in the U3D implementation can be exploited to potentially execute arbitrary code.

The vulnerabilities are reported in version 9.2 and prior.


Note: Felipe Andres Manzano in versions prior to 9.2.
Reported in version 9.2 by Parvez Anwar
Code Audit Labs, reported via iDefense
Solution: Update to version 8.2 or 9.3.

Adobe Reader:
http://get.adobe.com/reader

Acrobat Standard and Pro on Windows:
http://www.adobe.com/support/download...ct.jsp?product=1&platform=Windows

Acrobat Pro Extended on Windows:
http://www.adobe.com/support/download....jsp?product=158&platform=Windows

Acrobat 3D on Windows:
http://www.adobe.com/support/download....jsp?product=112&platform=Windows

Acrobat Pro users on Macintosh:
http://www.adobe.com/support/download....jsp?product=1&platform=Macintosh

NOTE: Support has ended for Adobe Reader 8.x on UNIX. Upgrade to version 9.3.
Original Advisory: Adobe:
http://www.adobe.com/support/security/advisories/apsa09-07.html
http://www.adobe.com/support/security/bulletins/apsb10-02.html
http://blogs.adobe.com/psirt/2009/12/new_adobe_reader_and_acrobat_v.html

Felipe Andres Manzano:
http://www.metasploit.com/redmine/pro...dows/fileformat/adobe_u3d_meshdecl.rb

iDefense:
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=836
References: http://secunia.com/advisories/cve_reference/CVE-2009-3953/
http://secunia.com/advisories/cve_reference/CVE-2009-3954/
http://secunia.com/advisories/cve_reference/CVE-2009-3955/
http://secunia.com/advisories/cve_reference/CVE-2009-3956/
http://secunia.com/advisories/cve_reference/CVE-2009-3959/
http://secunia.com/advisories/cve_reference/CVE-2009-4324/
Feedback: If you have additional information or corrections for this security advisory please contact us at advisory(at)triviasecurity.org

Security Advisories by Month (2010)
Mar (3) Jan (8)
TS Promotion
Software Security Tools
Latest Exploit Codes
TS Information
About Trivia Security
Frequently Asked Questions
TS Announcements
Terms of service
Site Map
Search
Security
Phishing Scams
Advisories
Exploits
News & Headlines
xss playground
Web Proxy
Proxy List
War Games
Encrypt
InfoSec Library
Latest Library Articles
Video Library
Top Articles
Browse Library
Soft-Tools
Latest Tools
Top Downloads
Browse Tools Archive
Forums
Login
Register
Search
Latest Topics
Links
Affiliates
TS Top Sites
Recomended Sites