ET WEB_CLIENT Adobe Acrobat Reader FlateDecode Stream Predictor Exploit Attempt

SID: 2013153Rev: 31 views

Sourceet/open

CreatedJuly 1, 2011

UpdatedOctober 8, 2019

Classificationattempted-user

alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_CLIENT Adobe Acrobat Reader FlateDecode Stream Predictor Exploit Attempt"; flow:established,to_client; content:"Colors 1073741838"; fast_pattern; pcre:"/<<[^>]*\x2FPredictor[^>]*\x2FColors\x201073741838/smi"; reference:url,www.fortiguard.com/analysis/pdfanalysis.html; reference:bid,36600; reference:cve,2009-3459; classtype:attempted-user; sid:2013153; rev:3; metadata:affected_product Web_Browsers, affected_product Web_Browser_Plugins, attack_target Client_Endpoint, created_at 2011_07_01, cve CVE_2009_3459, deployment Perimeter, signature_severity Major, tag Web_Client_Attacks, updated_at 2019_10_08;)

References

url	www.fortiguard.com/analysis/pdfanalysis.html
bid	36600
cve	2009-3459

Metadata

affected productWeb_Browser_Plugins

attack targetClient_Endpoint

created at2011_07_01

cveCVE-2009-3459

deploymentPerimeter

signature severityMajor

tagWeb_Client_Attacks

updated at2019_10_08

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!