1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Adobe Acrobat CVE-2013-2729

Web Attack: Adobe Acrobat CVE-2013-2729

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects the RLE8 format BMP file which causes integer overflow in a Adobe Reader.

Additional Information

The XML Forms Architecture (XFA) component of Adobe Reader X is vulnerable to specially crafted RLE8 format BMP files. An integer overflow in decompression code allows the attacker to overwrite arbitrary memory before that allocated buffer triggering the crash of the application and possible arbitrary code execution.

Affected

  • Adobe Reader XI (11.0.02) and earlier 11.x versions for Windows and Macintosh
  • Adobe Reader X (10.1.6) and earlier 10.x versions for Windows and Macintosh
  • Adobe Reader 9.5.4 and earlier 9.x versions for Windows, Macintosh and Linux
  • Adobe Acrobat XI (11.0.02) and earlier 11.x versions for Windows and Macintosh
  • Adobe Acrobat X (10.1.6) and earlier 10.x versions for Windows and Macintosh
  • Adobe Acrobat 9.5.4 and earlier 9.x versions for Windows and Macintosh
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube