52073 : Adobe Reader / Acrobat Document Handling JBIG2 Compression Overflow
Printer | http://osvdb.org/52073 | Email This | Edit Vulnerability

Views This Week	Views All Time	Added to OSVDB	Last Modified	Modified (since 2008)	Percent Complete
28	5530	over 4 years ago	4 months ago	42 times	100%

Timeline

Disclosure Date
2009-02-20

Description

A buffer overflow exists in Acrobat and Acrobat Reader. They fail to validate PDF files which use JBIG2 compression routines resulting in a buffer overflow. With a specially crafted file, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Local / Remote, Context Dependent
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Third-Party Solution
Exploit: Exploit Public, Exploit Commercial, Virus / Malware
Disclosure: Vendor Verified, Uncoordinated Disclosure, Discovered in the Wild

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Adobe Systems Incorporated	Acrobat	9.0
Adobe Systems Incorporated	Acrobat Reader	9.0

References

Security Tracker: 1021739
CVE ID: 2009-0658 (see also: NVD)
Bugtraq ID: 33751
Secunia Advisory ID: 33901 34392 34490 34706 34790 34804
SCIP VulDB ID: 3931
ISS X-Force ID: 48825
Metasploit ID: 52073
Milw0rm: 8099
Exploit Database: 8099
CERT VU: 905281
VUPEN Advisory: ADV-2009-0472
Mail List Post: http://archives.neohapsis.com/archives/dailydave/2009-q1/0103.html
http://linuxbox.org/pipermail/funsec/2009-February/019613.html
http://linuxbox.org/pipermail/funsec/2009-February/019615.html
http://linuxbox.org/pipermail/funsec/2009-February/019633.html
Other Advisory URL: http://blog.didierstevens.com/2009/03/02/quickpost-jbig2decode-essentials/
http://blog.didierstevens.com/2009/03/04/quickpost-jbig2decode-trigger-trio/
http://isc.sans.org/diary.html?n&storyid=5902
http://snort.org/vrt/advisories/vrt-rules-2009-02-20.html
http://sunsolve.sun.com/search/document.do?assetkey=1-66-256788-1
http://www.avertlabs.com/research/blog/index.php/2009/02/19/new-backdoor-attacks-using-pdf-documents/
http://www.shadowserver.org/wiki/pmwiki.php?n=Calendar.20090219
http://www.symantec.com/security_response/writeup.jsp?docid=2009-021215-2608-99
Vendor Specific News/Changelog Entry: http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html
http://sunsolve.sun.com/search/document.do?assetkey=1-66-256788-1
http://www.adobe.com/support/security/advisories/apsa09-01.html
Other Solution URL: http://vrt-sourcefire.blogspot.com/2009/02/homebrew-patch-for-adobe-acroreader-9.html
https://forums.symantec.com/t5/blogs/blogarticlepage/blog-id/vulnerabilities_exploits/article-id/188
Vendor Specific Advisory URL: http://www.adobe.com/support/security/advisories/apsa09-01.html
http://www.gentoo.org/security/en/glsa/glsa-200904-17.xml
Generic Exploit URL: http://www.saintcorporation.com/cgi-bin/exploit_info/adobe_jbig2
News Article: http://www.symantec.com/connect/blogs/targeted-pdfs-used-exploits
RedHat RHSA: https://rhn.redhat.com/errata/RHSA-2009-0376.html
CERT: TA09-051A

Tools & Filters

Snort	15354 15355 15356 15357 15358 15359 15360 15494 15495 15496 15497
	35821 40803
	acrobat_jbig

Credit

Not Available

CVSSv2 Score

CVSSv2 Base Score = 9.3
Source: nvd.nist.gov | Generated: 2009-02-23 | Disagree?

Comments

Add Comment Hide Add Comment

No Comments.

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.