SHARE
CORE IMPACT v10 - Exploits Update (Wed Dec 23 2009)
Adobe PDF Newplayer JavaScript Buffer Overflow Exploit Update
Exploits/Client Side [Windows]
• Wed Dec 23 2009
This module exploits a vulnerability in Adobe Reader and Adobe Acrobat Professional .PDF files. The vulnerability is caused due to boundary errors in newplayer() method in multimedia.api. This can be exploited to cause a buffer overflow when a specially crafted .PDF file is opened. This module runs a malicious web site on the CORE IMPACT Console and waits for an unsuspecting user to trigger the exploit by connecting to the web site. This Update adds support for Windows XP SP3 and Vista.
Exploits Vulnerabiltiy: CVE-2009-4324