Intrusion Prevention

Adobe.Reader.Local.Files.Handling.XXE

Description

This indicates an attack attempt against an information disclosure vulnerability in Adobe Acrobat and Reader.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted PDF file. A remote attacker may be able to exploit this to gain information about files on victim system via a crafted PDF file.

Affected Products

Adobe Acrobat Reader versions 7.0.1 and 7.0
Adobe Acrobat versions 7.0.1 and 7.0

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Upgrade to the latest version of Adobe Acrobat or Reader
http://www.adobe.com/support/downloads/

CVE References

CVE-2005-1306