CVE-2021-39863 PoC — Adobe Acrobat Reader DC Heap-based Buffer Overflow Vulnerability Could Lead To Arbitrary Code Execution

Source

https://github.com/WHS-SEGFAULT/CVE-2021-39863

Associated Vulnerability

Title:Adobe Acrobat Reader DC Heap-based Buffer Overflow Vulnerability Could Lead To Arbitrary Code Execution (CVE-2021-39863)
Description:Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Buffer Overflow vulnerability when parsing a specially crafted PDF file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Readme

# CVE-2021-39863

- Adobe Acrobat Reader DC 21.005.20048.43252 (32 bit)
  - Bypass ASLR, DEP
  - Non Bypass CFG

<br>

- exploit.pdf : Exploit PDF
- exploit.js : Embedded JS Script in exploit.pdf
- exploit example
  
  ![exploit](https://github.com/user-attachments/assets/115db10e-e113-4e0f-9e56-aa8aef5ca3a3)



# REFERENCE
- Exodus Blog, Analysis of a Heap Buffer-Overflow Vulnerability in Adobe Acrobat Reader DC
https://blog.exodusintel.com/2021/10/04/analysis-of-a-heap-buffer-overflow-vulnerability-in-adobe-acrobat-reader-dc-2/?utm_source=feedly&utm_medium=rss&utm_campaign=analysis-of-a-heap-buffer-overflow-vulnerability-in-adobe-acrobat-reader-dc-2

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →