BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

Adobe Reader/Acrobat U3D Memory Corruption Vulnerability

Disclosed December 6, 2011    Fully Patched

Vulnerability Description:

Adobe Reader and Acrobat contain an unspecified vulnerability, which occurs when parsing U3D data. This can be exploited to grant attackers the ability to execute arbitrary code. This vulnerability has been exploited in the wild, primarily on the 9.4.6 version of each product.

Vendors:

Adobe

Vulnerable Software/Devices:

  • Adobe Reader 9.4.6 and prior 9.x versions for Windows, Macintosh and UNIX
  • Adobe Acrobat 9.4.6 and prior 9.x versions for Windows and Macintosh
  • Adobe Reader 10.1.1 and prior 10.x versions for Windows and Macintosh
  • Adobe Acrobat 10.1.1 and prior 10.x versions for Windows and Macintosh

Vulnerability Severity:

High

Exploit Availability:

N/A

Exploit Impact:

Remote Code Execution
Client-side Remote Code Execution This client-side vulnerability could allow an attacker to gain the ability to execute arbitrary code on the user's system.

BeyondTrust Prevention and Detection:

BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.

  • 15770 - Adobe Reader/Acrobat Multiple Vulnerabilities (20120110) - Windows - Reader 9
  • 15771 - Adobe Reader/Acrobat Multiple Vulnerabilities (20120110) - Windows - Acrobat 9
  • 15772 - Adobe Reader/Acrobat Multiple Vulnerabilities (20120110) - Windows - Reader 10
  • 15773 - Adobe Reader/Acrobat Multiple Vulnerabilities (20120110) - Windows - Acrobat 10
  • 15774 - Adobe Reader/Acrobat Multiple Vulnerabilities (20120110) - ThinApp - Reader
  • 15775 - Adobe Reader/Acrobat Multiple Vulnerabilities (20120110) - ThinApp - Acrobat
  • 15776 - Adobe Reader/Acrobat Multiple Vulnerabilities (20120110) - Mac OS X - Reader 9
  • 15777 - Adobe Reader/Acrobat Multiple Vulnerabilities (20120110) - Mac OS X - Acrobat 9
  • 15778 - Adobe Reader/Acrobat Multiple Vulnerabilities (20120110) - Mac OS X - Reader 10
  • 15779 - Adobe Reader/Acrobat Multiple Vulnerabilities (20120110) - Mac OS X - Acrobat 10

Mitigation:

Enable Adobe Reader/Acrobat X Protected Mode.
No mitigation has been provided for versions prior to Adobe Reader/Acrobat X.

Links:

CVE(s):

None

Leave a Reply