FILE-PDF -- Snort has detected suspicious traffic related to a PDF file. PDFs are easily exploitable. They include many ways to encapsulate data and are often targeted by attackers, who use the PDF's household name status for social engineering. Therefore, Snort includes Many PDF-targeted rules.
FILE-PDF Adobe Acrobat Reader use-after-free attempt
This event is generated when exploit attempt against Adobe Reader via CVE-2018-5009 is detected. Impact: An attacker could execute code in the context of the current user. Details: Ease of Attack: Medium
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2018-5009 |
Loading description
|