Vulnerability Note VU#253024
Adobe Acrobat Reader for UNIX contains a buffer overflow in mailListIsPdf()
Overview
A buffer overflow in Adobe Acrobat Reader for UNIX could allow a remote attacker to execute arbitrary code.
Description
Adobe Acrobat Reader is an application that allows users to view PDF (Portable Document Format) files. Acrobat Reader for UNIX (Linux, Sun Solaris SPARC, IBM AIX, or HP-UX) contains a buffer overflow in the mailListIsPdf() function. This function determines if the specified input file is an email message containing a PDF attachment. When parsing the email message, this function unsafely copies user-supplied data to a fixed size buffer. |
Impact
An attacker could execute arbitrary code with privileges of the local user. Remote exploitation could be possible by attaching a specially crafted PDF to an email message. |
Solution
Upgrade Acrobat Reader This issue is resolved in Acrobat Reader 5.0.10 for UNIX. |
|
Systems Affected (Learn More)
| Vendor | Status | Date Notified | Date Updated |
|---|---|---|---|
| Adobe Systems Incorporated | Affected | 15 Dec 2004 | 15 Dec 2004 |
| FreeBSD | Affected | 05 Jan 2005 | 06 Jan 2005 |
| Gentoo | Affected | - | 06 Jan 2005 |
| Redhat | Affected | 05 Jan 2005 | 06 Jan 2005 |
| SuSE Inc. | Affected | 05 Jan 2005 | 06 Jan 2005 |
| Apple Computer Inc. | Not Affected | 05 Jan 2005 | 24 Feb 2005 |
| Debian | Not Affected | 05 Jan 2005 | 05 Jan 2005 |
| Hitachi | Not Affected | 05 Jan 2005 | 18 Jan 2005 |
| NEC Corporation | Not Affected | 05 Jan 2005 | 09 Mar 2005 |
| Conectiva | Unknown | 05 Jan 2005 | 05 Jan 2005 |
| Cray Inc. | Unknown | 05 Jan 2005 | 05 Jan 2005 |
| EMC Corporation | Unknown | 05 Jan 2005 | 05 Jan 2005 |
| Engarde | Unknown | 05 Jan 2005 | 05 Jan 2005 |
| F5 Networks | Unknown | 05 Jan 2005 | 05 Jan 2005 |
| Fujitsu | Unknown | 05 Jan 2005 | 05 Jan 2005 |
CVSS Metrics (Learn More)
| Group | Score | Vector |
|---|---|---|
| Base | N/A | N/A |
| Temporal | N/A | N/A |
| Environmental | N/A | N/A |
References
- http://www.idefense.com/application/poi/display?id=161&type=vulnerabilities
- http://www.adobe.com/support/techdocs/331153.html
- http://secunia.com/advisories/13474/
Credit
This vulnerability was reported by Greg MacManus.
This document was written by Will Dormann, based on the information provided in the iDEFENSE Security Advisory 12.14.04 .
Other Information
- CVE IDs: CAN-2004-1152
- Date Public: 14 Dec 2004
- Date First Published: 20 Jan 2005
- Date Last Updated: 09 Mar 2005
- Severity Metric: 1.02
- Document Revision: 7
Feedback
If you have feedback, comments, or additional information about this vulnerability, please send us email.
View Notes By
Report a Vulnerability
Please use the Vulnerability Reporting Form to report a vulnerability. Alternatively, you can send us email. Be sure to read our vulnerability disclosure policy.