Intrusion Prevention

Adobe.Getplus.ActiveX.Control.Buffer.Overflow

Description

This indicates an attempt to exploit a Code Execution vulnerability in the Adobe "get_atlcom" Class.
The vulnerability, which is located in the "gp.ocx" ActiveX control, can be exploited through misuse of multiple vulnerable properties. It may allow remote attackers to execute arbitrary code on vulnerable systems.

Affected Products

Adobe Reader 9.2 and earlier versions for Windows, Macintosh, and UNIX.
Adobe Acrobat 9.2 and earlier versions for Windows and Macintosh.

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the patch supplied by the vendor:
http://www.adobe.com/support/security/bulletins/apsb10-02.html

CVE References

CVE-2010-1278