Adobe Acrobat Reader 8.1.2 – 9.0 getIcon() Memory Corruption Exploit

冷血

Adobe Acrobat Reader 8&#46;1&#46;2 – 9&#46;0 getIcon() Memory Corruption Exploit <br />Affected Version   : Acrobat Reader 8&#46;1&#46;2 - 9&#46;0 <br />Vendor  Patch      :http://www&#46;adobe&#46 ... b09-04&#46;html <br />Tested   On        : XP SP2 / SP3 <br /><br />from ZDI :  http://www&#46;zerodayinitia ... isories/ZDI-09-014/ <br /><br />This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations <br />of Adobe Acrobat and Adobe Reader&#46; User interaction is required in that a user must visit a <br />malicious web site or open a malicious file&#46;The specific flaw exists when processing malicious <br />java script contained in a PDF document&#46; When supplying a specially crafted argument to the getIcon() <br />method of a Collab object, proper bounds checking is not performed resulting in a stack overflow&#46; <br />If successfully exploited full control of the affected machine running under the credentials of the <br />currently logged in user can be achieved&#46; <br /><br />This vulnerability was discovered by: <br /><br />Tenable Network Security (here is a man named Nicolas Pouvesle and we know == &gt; he have lots of exploitation method ;)  ) <br /><br />Exploit By :  www&#46;Abysssec&#46;com <br /><br />note : this exploit is just for purpose so shellcode will execute calc if you want other shellcode change shellcode &#46; <br /><br />Exploit Link :http://abysssec&#46;com/Adobe&#46;Collab&#46;getIcon()&#46;pdf <br />Mirror  Link :http://milw0rm&#46;com/sploi ... getIcon&#46;pdf<br /><br /><blockquote class="blockquote">From: http://www&#46;ipsix&#46;cn/read&#46;php?tid=1707&page=1&toread=1  Powered by PHPWind&#46;com</blockquote>