Adobe Reader / Acrobat SING "uniqueName" Buffer Overflow Vulnerability

Secunia ID	SA41340
CVE-ID	CVE-2010-2883
Release Date	08 Sep 2010
Last Change	06 Oct 2010
Criticality	Extremely Critical
Solution Status	Vendor Patch
Software	Adobe Acrobat 8.x Adobe Acrobat 9.x Adobe Reader 8.x Adobe Reader 9.x
Where	From remote
Impact	System access This covers vulnerabilities where malicious people are able to gain system access and execute arbitrary code with the privileges of a local user.
Description	A vulnerability has been discovered in Adobe Reader/Acrobat, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error within CoolType.dll when processing the "uniqueName" entry of SING tables in fonts and can be exploited to cause a stack-based buffer overflow by e.g. tricking a user into opening a malicious PDF file containing a specially crafted embedded font. The vulnerability is reported in version 8.2.4 (confirmed) and prior and version 9.3.4 (confirmed) and prior. NOTE: The vulnerability is currently being actively exploited.
Solution	Update to version 8.2.5 and 9.4.
Reported by	Reported as a 0-day.
Original Advisory	Adobe: http://www.adobe.com/support/security/advisories/apsa10-02.html http://www.adobe.com/support/security/bulletins/apsb10-21.html contagio: http://contagiodump.blogspot.com/2010/09/cve-david-leadbetters-one-point-lesson.html

© 1997-2013 Kaspersky Lab ZAO. All Rights Reserved.
Industry-leading Antivirus Software.
Registered trademarks and service marks are the property of their respective owners.
The authors' opinions do not necessarily reflect the official positions of Kaspersky Lab.