Talos is disclosingTALOS-2016-0259/ CVE-2016-9041 an uninitialized memory vulnerability in Adobe Acrobat Reader DC. Adobe Acrobat Reader is one of the largest and well known PDF readers available today.
This particular vulnerability is associated with the JPEG Decoder functionality embedded in the application. A specially crafted PDF document containing a JPEG can be used to trigger this vulnerability which results in a heap-based buffer overflow which can be leveraged to achieve remote code execution. The full details surrounding the vulnerability are availablehere.
Coverage
The following Snort Rules will detect exploitation attempts. Note that additional rules may be released at a future date and current rules are subject to change pending additional vulnerability information. For the most current rule information, please refer to your FireSIGHT Management Center or Snort.org.
Snort Rule: 41298 - 41305
Tags:
Cisco Systems Inc. published this content on 20 January 2017 and is solely responsible for the information contained herein. Distributed by Public, unedited and unaltered, on 20 January 2017 17:19:08 UTC.
Original documenthttp://blogs.cisco.com/security/talos/adobe-reader-jpeg-vuln
Public permalinkhttp://www.publicnow.com/view/8FAE04EE8822ADCCEE75B258E0BFBA474CAE995D
Cisco Systems, Inc. is the world leader in designing, developing, and marketing Internet network equipment. Net sales break down by family of products and services as follows:
- network equipment (68.9%); switches and routers, technological software and systems (storage, Internet access, and security systems, wiring, gateways, connection interfaces and modules, etc.), etc.;
- services (24.3%): technical assistance, network design, execution, and integration services, etc.;
- security products (6.8%).
Net sales are distributed geographically as follows: Americas (58.7%), Europe/Middle East/Africa (26.6%) and Asia/Pacific (14.7%).