Intrusion Prevention

Adobe.Acrobat.GetIcon.Method.Stack.Buffer.Overflow

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in Adobe Reader and Adobe Acrobat.
The vulnerability is caused by an error when the vulnerable software handles malicious JavaScript. It allows a remote attacker to execute arbitrary code via sending a crafted "pdf" file.

Affected Products

Adobe Reader and Adobe Acrobat 9.1 and 7.1.1

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Refer to the vendor's web site for the suggested workaround:
http://www.adobe.com/support/security/bulletins/apsb09-04.html

CVE References

CVE-2009-0927