Apple PDF Viewer TTF Embedded Jailbreak Code Execution
| Check Point Reference: | CPAI-2011-338 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | IPS Research Team | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Apple devices that are running Apple PDF Viewer, particularly all versions of iPhone/iPad/iPod | ||
| Vulnerability Description A remote code execution vulnerability in Apple PDF viewer has been reported. Remote attackers could trigger this flaw by enticing a user to open a specially crafted PDF file. Successful exploitation of this vulnerability may enable an attacker to execute arbitrary code in an affected system. |
||
|
Vulnerability Details This is a remote code execution vulnerability. The vulnerability is due to the way that Apple PDF Viewer handles PDF files that contain TrueType font (TTF), particularly on Apple mobile devices. Successful exploitation of this vulnerability may enable an attacker to execute arbitrary code in an affected system. |
Protection Overview
This protection will detect and block the transferring of malformed PDF files over HTTP.
In order for the protection to be activated, update your Security Gateway/VPN-1 product to the latest IPS/SmartDefense update. For information on how to update IPS/SmartDefense, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.