Intrusion Prevention

Adobe.Reader.CollectEmailInfo.JavaScript.Method.Buffer.Overflow

Description

This indicates an attempt to exploit a buffer overflow vulnerability in the Adobe PDF reader JavaScript engine.
By passing overly long parameters to the method "Collab.collectEmailInfo()", an attacker can execute arbitrary code on a vulnerable computer. To exploit this the attacker must trick the victim into opening a maliciously crafted PDF document.

Affected Products

Versions older than Adobe Reader and Acrobat before 8.1.2

Impact

System Compromise: remote attackers can gain control of vulnerable systems.

Recommended Actions

Update to at least version 8.1.2

CVE References

CVE-2007-5659 CVE-2008-0655