OSVDB ID: 58928

Title: Adobe Reader / Acrobat Unspecified Trust Manager Restriction Bypass

Info

Disclosure

Oct 13, 2009

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Oct 13, 2009

Description

Adobe Reader and Acrobat contain a flaw that is triggered when an unspecified error occurs in trust manager. This may allow an attacker to bypass certain restrictions. No further details have been provided.

Classification

Location: Local / Remote, Context Dependent
Impact: Loss of Integrity
Solution: Upgrade
Disclosure: Vendor Verified, Vendor Verified, Coordinated Disclosure

Solution

Upgrade Reader to version 9.2 or higher and Acrobat users to upgrade to version 7.1.4, 8.1.7, 9.2 or higher as it has been reported to fix this vulnerability. Adobe has provided updates to Reader 7.1.4 and 8.1.7.

Products

Adobe Systems Incorporated

Adobe Reader

9.1.3
8.1.6
7.1.3

Acrobat

9.1.3

References

Credit

  • Stefano Di Paola - stefano.dipaolawisec.it - Minded Security


Direct URL: http://osvdb.org/58928