Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:20814
HistoryNov 05, 2008 - 12:00 a.m.

Secunia Research: Adobe Acrobat/Reader "util.printf()" Buffer Overflow

2008-11-0500:00:00
vulners.com
18
JSON

======================================================================

                 Secunia Research 04/11/2008

   - Adobe Acrobat/Reader "util.printf()" Buffer Overflow -

======================================================================
Table of Contents

Affected Software…1
Severity…2
Vendor's Description of Software…3
Description of Vulnerability…4
Solution…5
Time Table…6
Credits…7
References…8
About Secunia…9
Verification…10

======================================================================
1) Affected Software

  • Adobe Acrobat / Reader version 8.1.2

NOTE: Other versions may also be affected.

======================================================================
2) Severity

Rating: Highly critical
Impact: System access
Where: Remote

======================================================================
3) Vendor's Description of Software

"Adobe Acrobat 8 Professional software enabled business professionals
to reliably create, combine, and control Adobe PDF documents for
easy, more secure distribution, collaboration, and data collection."

Product Link: http://www.adobe.com/products/acrobat/

======================================================================
4) Description of Vulnerability

Secunia Research has discovered a vulnerability in Adobe
Acrobat/Reader, which can be exploited by malicious people to
compromise a user's system.

The vulnerability is caused due to a boundary error when parsing
format strings containing a floating point specifier in the
"util.printf()" Javascript function and can be exploited to cause a
stack-based buffer overflow via a specially crafted PDF.

Successful exploitation may allow execution of arbitrary code when
viewing a malicious PDF file.

======================================================================
5) Solution

The vendor will be releasing fixes later today.

NOTE: This was supposed to be a coordinated disclosure with Adobe, but
a third party has leaked the information.

======================================================================
6) Time Table

16/04/2008 - Vendor notified.
17/04/2008 - Vendor response.
09/05/2008 - Vendor informed that similar vulnerability will be fixed
in Foxit Reader this month.
10/05/2008 - Vendor response thanking for the heads-up.
20/05/2008 - Similar vulnerability published for Foxit Reader.
22/10/2008 - Vendor provides status update.
31/10/2008 - Vendor provides another status update along with a draft
of the upcoming security bulletin.
04/11/2008 - Public disclosure.

======================================================================
7) Credits

Discovered by Dyon Balding, Secunia Research.

======================================================================
8) References

The Common Vulnerabilities and Exposures (CVE) project has assigned
CVE-2008-2992 for the vulnerability.

======================================================================
9) About Secunia

Secunia offers vulnerability management solutions to corporate
customers with verified and reliable vulnerability intelligence
relevant to their specific system configuration:

http://corporate.secunia.com/

Secunia also provides a publicly accessible and comprehensive advisory
database as a service to the security community and private
individuals, who are interested in or concerned about IT-security.

http://secunia.com/

Secunia believes that it is important to support the community and to
do active vulnerability research in order to aid improving the
security and reliability of software in general:

http://corporate.secunia.com/secunia_research/33/

Secunia regularly hires new skilled team members. Check the URL below
to see currently vacant positions:

http://secunia.com/secunia_vacancies/

Secunia offers a FREE mailing list called Secunia Security Advisories:

http://secunia.com/secunia_security_advisories/

======================================================================
10) Verification

Please verify this advisory by visiting the Secunia website:
http://secunia.com/secunia_research/2008-14/

Complete list of vulnerability reports published by Secunia Research:
http://secunia.com/secunia_research/

======================================================================

Related

checkpoint_advisories 2
canvas 1
packetstorm 2
cert 1
exploitpack 1
securityvulns 3
saint 4
seebug 2
cisa_kev 1
zdi 1
exploitdb 1
cve 1
ubuntucve 1
prion 1
attackerkb 1
coresecurity 1
threatpost 1
thn 2
nessus 7
openvas 5
gentoo 1
redhat 1
checkpoint_advisories
checkpoint_advisories
Workaround for Adobe Reader and Acrobat util.printf Stack Buffer Overflow Vulnerability
2008-12-01 00:00:00
Adobe Reader and Acrobat util.printf Stack Buffer Overflow (CVE-2008-2992)
2009-12-31 00:00:00
canvas
canvas
Immunity Canvas: ACROBAT_JS3
2008-11-04 18:29:00
packetstorm
packetstorm
adobe-printf.txt
2008-11-06 00:00:00
Adobe util.printf() Buffer Overflow
2009-11-26 00:00:00
cert
cert
Adobe Reader and Acrobat util.printf() JavaScript function stack buffer overflow
2008-11-04 00:00:00
exploitpack
exploitpack
Adobe Reader - util.printf() JavaScript Function Stack Overflow (2)
2008-11-05 00:00:00
securityvulns
securityvulns
ZDI-08-072: Adobe Acrobat PDF Javascript printf Stack Overflow Vulnerability
2008-11-05 00:00:00
CORE-2008-0526: Adobe Reader Javascript Printf Buffer Overflow
2008-11-05 00:00:00
Adobe Acrobat / Reader multiple security vulnerabilities
2008-11-05 00:00:00
saint
saint
Adobe Acrobat util.printf JavaScript function buffer overflow
2008-11-10 00:00:00
Adobe Acrobat util.printf JavaScript function buffer overflow
2008-11-10 00:00:00
Adobe Acrobat util.printf JavaScript function buffer overflow
2008-11-10 00:00:00
seebug
seebug
Adobe Reader - util.printf() JavaScript Function Stack Overflow Exploit (2)
2014-07-01 00:00:00
Adobe Reader util.printf() JavaScript Function Stack Overflow Exploit #2
2008-11-07 00:00:00
cisa_kev
cisa_kev
Adobe Reader and Acrobat Input Validation Vulnerability
2022-03-03 00:00:00
zdi
zdi
Adobe Acrobat PDF Javascript printf Stack Overflow Vulnerability
2008-11-04 00:00:00
exploitdb
exploitdb
Adobe Reader - 'util.printf()' JavaScript Function Stack Overflow (2)
2008-11-05 00:00:00
cve
cve
CVE-2008-2992
2008-11-04 18:29:00
ubuntucve
ubuntucve
CVE-2008-2992
2008-11-04 00:00:00
prion
prion
Stack overflow
2008-11-04 18:29:00
attackerkb
attackerkb
CVE-2008-2992
2008-11-04 00:00:00
coresecurity
coresecurity
Adobe Reader Javascript Printf Buffer Overflow
2008-11-04 00:00:00
threatpost
threatpost
PBS Website Compromised, Used to Serve Exploits
2009-09-23 22:41:03
thn
thn
Bleeding Life 2 Exploit Pack Released
2011-10-24 04:30:00
Phoenix Exploit's Kit 2.8 mini version
2011-10-12 17:41:00
nessus
nessus
GLSA-200901-09 : Adobe Reader: User-assisted execution of arbitrary code
2009-01-14 00:00:00
SuSE 10 Security Update : Acrobat Reader (ZYPP Patch Number 5746)
2008-11-24 00:00:00
Adobe Reader < 8.1.3 / 9.0 Multiple Vulnerabilities
2008-11-04 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200901-09 (acroread)
2009-01-20 00:00:00
Gentoo Security Advisory GLSA 200901-09 (acroread)
2009-01-20 00:00:00
Adobe Reader/Acrobat Multiple Vulnerabilities (APSB08-19) - Linux
2008-11-05 00:00:00
gentoo
gentoo
Adobe Reader: User-assisted execution of arbitrary code
2009-01-13 00:00:00
redhat
redhat
(RHSA-2008:0974) Critical: acroread security update
2008-11-12 00:00:00
JSON
Related for SECURITYVULNS:DOC:20814
checkpoint_advisories2canvas1packetstorm2cert1exploitpack1securityvulns3saint4seebug2cisa_kev1zdi1exploitdb1cve1ubuntucve1prion1attackerkb1coresecurity1threatpost1thn2nessus7openvas5gentoo1redhat1