- CVE-2009-4324
Use-after-free vulnerability in the Doc.media.newPlayer method in Adobe
Reader and Acrobat 8.0 through 9.2, and possibly earlier versions,
allows remote attackers to execute arbitrary code using ZLib compressed
streams, as exploited in the wild in December 2009.
- CVE-2008-2992 Stack-based buffer overflow in Adobe Acrobat and Reader 8.1.2 and earlier allows remote attackers to execute arbitrary code via a PDF file that calls the util.printf JavaScript function with a crafted format string argument, a related issue to CVE-2008-1104.
Details: 9088220C7FA358F70A95455630E4EEDD - revitalizing_democracy_assistance_summary.pdf
Sent: Tuesday, January 19, 2010 9:42 AM
To: XXXXXXXXXXXXX
Subject: Revitalizing Democracy Assistance
FYI.
Thomas Carothers
Vice President for Studies, CEIP
Virustotal
http://www.virustotal.com/analisis/3c2ff3d5a833fb4d7c867e1083681ef05b8e688ee3474355b9db7b462b143b02-1263962253
File revitalizing_democracy_assistance received on 2010.01.20 04:37:33 (UTC)
Result: 2/41 (4.88%)
Avast 4.8.1351.0 2010.01.19 JS:Pdfka-WP
GData 19 2010.01.20 JS:Pdfka-WP
File size: 235512 bytes
MD5...: 9088220c7fa358f70a95455630e4eedd
Wepawet
http://wepawet.cs.ucsb.edu/view.php?hash=9088220c7fa358f70a95455630e4eedd&type=js
File revitalizing_democracy_assistance_summary.pdf
MD5 9088220c7fa358f70a95455630e4eedd
Analysis Started 2010-01-19 20:58:32
Report Generated 2010-01-19 20:58:36
Jsand 1.03.02 malicious
doc.media.newPlayer Use-after-free vulnerability in the Doc.media.newPlayer method in Adobe Reader and Acrobat 8.0 through 9.2 CVE-2009-4324
ViCheck.ca
https://www.vicheck.ca/md5query.php?hash=9088220c7fa358f70a95455630e4eedd
revitalizing_democracy_assistance_summary.pdf:
EXECUTABLE SCAN: PDF Exploit suspicious use of util.printd CVE-2008-2992 (pdfexploit/full)
REPORT: https://www.vicheck.ca/md5query.php?hash=9088220c7fa358f70a95455630e4eedd
Confidence ranking: 90 (4 hits).
No comments:
Post a Comment