navigation bar left navigation bar right

Secunia CSI7
navigation left tab About us navigation right tab
navigation left tab Careers navigation right tab
navigation left tab Memberships navigation right tab
navigation left tab Newsroom navigation right tab
navigation left tab Contact us navigation right tab

Adobe Reader and The Unspecified Vulnerability

Get this blog as an RSS Feed
Ancient vulnerabilities fixed in Adobe Reader.
14:53 CET on the 19th February 2010
Entry written by Alin Rad Pop.

Adobe Reader has been recently updated to version 9.3.1, fixing a vulnerability for which no details were provided. Quoting the vendor: "In addition, a critical vulnerability (CVE-2010-0188) has been identified that could cause the application to crash and could potentially allow an attacker to take control of the affected system."

At the start of our analysis of the fixes, AcroForm.api was determined to be modified by the update, the module being used by Adobe Reader when handling actions associated with PDF forms. After having a look at the changed code, it became very clear that the interesting changes were made to an included version of the open source libtiff library. The library was further determined to be used by Adobe Reader for rendering TIFF images inserted into image form fields.

While the version string was omitted from the included library, source code changes between minor versions point to 3.8.1. Surprisingly enough, libtiff 3.8.1 originates from 2006 and contains a reasonable amount of vulnerabilities, including the ones described in: SA21304.

Soon after the finding, a TIFF file exploiting the stack-based buffer overflow registered under CVE-2006-3459 was internally developed and confirmed to allow code execution in Adobe Reader version 9.3.0.

It's currently not known for a fact if CVE-2010-0188 was assigned by Adobe for the TIFF vulnerabilities or whether they were silently fixed. However, it's funny how an analysis targeted towards one unspecified vulnerability ended up revealing multiple documented vulnerabilities originating from 2006 and, furthermore, all related to a file format currently under Adobe's control.

Stay Secure,

Alin Rad Pop,
Senior Security Specialist

Discuss this blog entry
A new thread in our forum is created. Activate the thread by commenting/discussing below.
Subject: Adobe Reader and The Unspecified Vulnerability
No posts yet


You must be logged in to post a comment.

 Products Solutions Customers Partner Resources Company
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
Technology Partners
 About us

Secunia is a member of FIRST Secunia is a member of EDUcause Secunia is a member of The Open Group Secunia is a member of FS-ISAC
Secunia © 2002-2015 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer
follow Secunia on Facebook follow Secunia on Twitter follow Secunia on LinkedIn follow Secunia on YouTube follow Secunia Xing follow Secunias RSS feed follow Secunia on Google+