Jump to content
Nytro

Adobe Reader X BMP/RLE heap corruption

By Nytro, in Reverse engineering & exploit development

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

Adobe Reader X

BMP/RLE heap corruption

Adobe Reader X is a powerful software solution developed by Adobe Systems to view,

create, manipulate, print and manage les in Portable Document Format (PDF). Since

version 10 it includes the Protected Mode, a sandbox technology similar to the one in

Google Chrome which improves the overall security of the product.

Adobe Reader X fails to validate the input when parsing an embedded BMP RLE encoded

image. Arbitrary code execution in the context of the sandboxed process is proved possible

after a malicious bmp image triggers a heap over

ow.

Download:

http://t.co/ivC0BG33fh

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...