Adobe Reader - 'util.printf()' JavaScript Function Stack Overflow (1)

Adobe Reader 'util.printf' JavaScript Function Stack Buffer Overflow Exploit author: Elazar https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/6994.pdf 2008-APSB08-19.pdf milw0rm.com 2008-11-05...

Adobe Reader - util.printf() JavaScript Function Stack Overflow (2)

Adobe Reader - util.printf JavaScript Function Stack Overflow 2 Adobe Reader Javascript Printf Buffer Overflow Exploit =========================================================== Reference: http://www.coresecurity.com/content/adobe-reader-buffer-overflow CVE-2008-2992 Thanks to coresecurity for t...

Adobe Reader/Acrobat Multiple Vulnerabilities - Nov08 (Windows)

This host has Adobe Reader/Acrobat installed, which is/are prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeprdtsmultvulnnov08win.nasl 5370 2017-02-20 15:24:26Z cfi $ Adobe Reader/Acrobat Multiple Vulnerabilities - Nov08 Windows Authors: Chandan S Copyright: Copyright c...

Adobe Reader util.printf() JavaScript Function Stack Overflow Exploit

Exploit for unknown platform in category local exploits ===================================================================== Adobe Reader util.printf JavaScript Function Stack Overflow Exploit ===================================================================== Adobe Reader 'util.printf'...

CVE-2008-2992

CVE-2008-2992 is a stack-based buffer overflow in Adobe Reader/Acrobat up to version 8.1.2 triggered by parsing crafted PDF files that invoke the util.printf JavaScript function. The vulnerability allows a remote attacker to execute arbitrary code with the user’s privileges when a victim opens a ...

Adobe Reader 'util.printf()' JavaScript Function Stack Buffer Overflow Vulnerability

Description Adobe Reader is prone to a stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the application or crash t...

Adobe Reader < 8.1.3 / 9.0 Multiple Vulnerabilities

The version of Adobe Reader installed on the remote host is earlier than 8.1.3. Such versions are reportedly affected by multiple vulnerabilities : - There is a publicly-published denial of service issue CVE-2008-2549. - A stack-based buffer overflow when parsing format strings containing a...

Adobe Reader Javascript Printf Buffer Overflow

Advisory ID Internal CORE-2008-0526 1. Advisory Information Title: Adobe Reader Javascript Printf Buffer Overflow Advisory ID: CORE-2008-0526 Advisory URL:http://www.coresecurity.com/content/adobe-reader-buffer-overflow Date published: 2008-11-04 Date of last update: 2008-11-04 Vendors contacted:...

Adobe Reader Detection (Linux/Unix SSH Login)

Detects the installed version of Adobe Reader. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Adobe Reader/Acrobat JavaScript Method Handling Vulnerability (APSB08-15) - Linux

Adobe Reader/Acrobat is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Adobe Reader/Acrobat JavaScript Method Handling Vulnerability (Windows)

This host has Adobe Reader/Acrobat installed, which is/are prone to Remote Code Execution Vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobeprdtscodeexecvulnwin.nasl 5370 2017-02-20 15:24:26Z cfi $ Adobe Reader/Acrobat JavaScript Method Handling Vulnerability Windows Authors: Veerendra GG...

Gentoo Security Advisory GLSA 200508-11 (acroread)

The remote host is missing updates announced in advisory GLSA 200508-11. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200508-11 (acroread)

The remote host is missing updates announced in advisory GLSA 200508-11. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200808-10 (acroread)

The remote host is missing updates announced in advisory GLSA 200808-10. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200808-10 (acroread)

The remote host is missing updates announced in advisory GLSA 200808-10. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

FreeBSD Ports: acroread4, acroread5

The remote host is missing an update to the system as announced in the referenced advisory. VID 70c59485-ee5a-11d9-8310-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: acroread4, acroread5

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

GLSA-200808-10 : Adobe Reader: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200808-10 Adobe Reader: User-assisted execution of arbitrary code The Johns Hopkins University Applied Physics Laboratory reported that input to an unspecified JavaScript method is not properly validated. Impact : A remote attacke...

acroread: input validation issue in a JavaScript method

Unspecified vulnerability in Adobe Reader and Acrobat 7.0.9 and earlier, and 8.0 through 8.1.2, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via unknown vectors, related to an "input validation issue in a JavaScript method."...

Adobe Reader < 7.1.0 / 8.1.2 SU1 Unspecified JavaScript Method Handling Arbitrary Code Execution

The version of Adobe Reader installed on the remote Windows host contains a flaw in the function Collab.collectEmailInfo that could allow a remote attacker to crash the application and/or to take control of the affected system. To exploit this flaw, an attacker would need to trick a user on the...