Jump to content
Nytro

Adobe Reader X BMP/RLE heap corruption

By Nytro, in Reverse engineering & exploit development

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

Adobe Reader X

BMP/RLE heap corruption

Adobe Reader X is a powerful software solution developed by Adobe Systems to view,

create, manipulate, print and manage les in Portable Document Format (PDF). Since

version 10 it includes the Protected Mode, a sandbox technology similar to the one in

Google Chrome which improves the overall security of the product.

Adobe Reader X fails to validate the input when parsing an embedded BMP RLE encoded

image. Arbitrary code execution in the context of the sandboxed process is proved possible

after a malicious bmp image triggers a heap over

ow.

Download:

http://t.co/ivC0BG33fh

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...