This module exploits an integer overflow vulnerability in Adobe Reader and Adobe Acrobat Professional versions before 9.2.

Module Name

exploit/windows/fileformat/adobe_flatedecode_predictor02

Authors

• unknown
• jduck <jduck [at] metasploit.com>

References

• CVE-2009-3459
• BID-36600
• OSVDB-58729
• URL: http://blogs.adobe.com/psirt/2009/10/adobe_reader_and_acrobat_issue_1.html
• URL: http://www.adobe.com/support/security/bulletins/apsb09-15.html
• URL: http://www.fortiguard.com/analysis/pdfanalysis.html

Targets

• Adobe Reader Windows Universal (JS Heap Spray)

Platforms

• windows

Reliability

• Good

Development

• Source Code
• History

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

Related Vulnerabilities

• APSB09-15: Security updates available for Adobe Reader and Acrobat (CVE-2009-3459)
• SUSE Linux Security Advisory: SUSE-SA:2009:049
• RHSA-2009:1499: acroread security update
• Adobe APSB09-15: Adobe Reader Remote Code Execution Vulnerability

Related Modules

• Adobe FlateDecode Stream Predictor 02 Integer Overflow