METASPLOIT-modules/exploits/windows/fileformat/adobe_media_newplayer.rb

METASPLOIT ruby WORKING POC

Exploit for CVE-2009-4324 - Adobe Reader/Acrobat <9.3-8.2 - RCE

AI Analysis

This Metasploit module exploits a use-after-free vulnerability in Adobe Reader and Acrobat Professional (up to version 9.2) via a crafted PDF file containing malicious JavaScript. The exploit uses heap spraying and a JavaScript payload to achieve remote code execution.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

Loading exploit code...

Download ZIP Password: eip

Source

Platform Metasploit

Type poc

Platform win

Language ruby

Rank good

Files 1

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/adobe_media_newplayer.rb

Authors

hdm Pusscat jduck Unknown

Vulnerability

CVE-2009-4324

Adobe Reader/Acrobat <9.3-8.2 - RCE

HIGH KEV

CVSS 7.8