Adobe Reader Javascript API getAnnots method vulnerability

Added: 05/29/2009 CVE: CVE-2009-1492 BID: 34736 OSVDB: 54130 Background Adobe Reader is free software for viewing PDF documents. Problem A vulnerability in the Javascript API allows command execution when a user opens a PDF file which calls the getAnnots method with specially crafted arguments...

Adobe Reader Javascript API getAnnots method vulnerability

Added: 05/29/2009 CVE: CVE-2009-1492 BID: 34736 OSVDB: 54130 Background Adobe Reader is free software for viewing PDF documents. Problem A vulnerability in the Javascript API allows command execution when a user opens a PDF file which calls the getAnnots method with specially crafted arguments...

RedHat Security Advisory RHSA-2009:0478

The remote host is missing updates announced in advisory RHSA-2009:0478. Adobe Reader allows users to view and print documents in Portable Document Format PDF. Two flaws were discovered in Adobe Reader's JavaScript API. A PDF file containing malicious JavaScript instructions could cause Adobe...

RedHat Security Advisory RHSA-2009:0478

The remote host is missing updates announced in advisory RHSA-2009:0478. Adobe Reader allows users to view and print documents in Portable Document Format PDF. Two flaws were discovered in Adobe Reader SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a...

US-CERT Technical Cyber Security Alert TA09-133B -- Adobe Reader and Acrobat JavaScript Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Alert System Technical Cyber Security Alert TA09-133B Adobe Reader and Acrobat JavaScript Vulnerabilities Original release date: May 13, 2009 Last revised: -- Source: US-CERT Systems Affected Adobe Reader versions 9.1, 8.1.4, 7.1.1 and...

Adobe reader multiple security vulnerabilities

Vulnerabilities in different jkavascript methods...

acroread: multiple vulnerabilities in Adobe Reader 8.1.4

The customDictionaryOpen spell method in the JavaScript API in Adobe Reader 9.1, 8.1.4, 7.1.1, and earlier on Linux and UNIX allows remote attackers to cause a denial of service memory corruption or execute arbitrary code via a PDF file that triggers a call to this method with a long string in th...

acroread: multiple vulnerabilities in Adobe Reader 8.1.4

The getAnnots Doc method in the JavaScript API in Adobe Reader and Acrobat 9.1, 8.1.4, 7.1.1, and earlier allows remote attackers to cause a denial of service memory corruption or execute arbitrary code via a PDF file that contains an annotation, and has an OpenAction entry with JavaScript code...

Critical: Red Hat Security Advisory: acroread security update

Updated acroread packages that fix two security issues are now available for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. Ado...

Adobe Reader getAnnots() JavaScript Method PDF Handling Memory Corruption (APSB09-06)

The version of Adobe Reader installed on the remote host is earlier than 9.1.1 / 8.1.5 / 7.1.2. Such versions reportedly fail to validate input from a specially crafted PDF file before passing it to the JavaScript method 'getAnnots' leading to memory corruption and possibly arbitrary code...

Adobe Reader Javascript API spell.customDictonaryOpen memory corruption

Added: 05/12/2009 CVE: CVE-2009-1493 BID: 34740 OSVDB: 54129 Background Adobe Reader is free software for viewing PDF documents. Problem A memory corruption vulnerability in the Javascript API in Adobe Reader allows command execution when a user opens a specially crafted PDF file which calls the...

Adobe Reader Javascript API spell.customDictonaryOpen memory corruption

Added: 05/12/2009 CVE: CVE-2009-1493 BID: 34740 OSVDB: 54129 Background Adobe Reader is free software for viewing PDF documents. Problem A memory corruption vulnerability in the Javascript API in Adobe Reader allows command execution when a user opens a specially crafted PDF file which calls the...

Adobe Reader Javascript API spell.customDictonaryOpen memory corruption

Added: 05/12/2009 CVE: CVE-2009-1493 BID: 34740 OSVDB: 54129 Background Adobe Reader is free software for viewing PDF documents. Problem A memory corruption vulnerability in the Javascript API in Adobe Reader allows command execution when a user opens a specially crafted PDF file which calls the...

Adobe Reader Javascript API spell.customDictonaryOpen memory corruption

Added: 05/12/2009 CVE: CVE-2009-1493 BID: 34740 OSVDB: 54129 Background Adobe Reader is free software for viewing PDF documents. Problem A memory corruption vulnerability in the Javascript API in Adobe Reader allows command execution when a user opens a specially crafted PDF file which calls the...

Adobe Reader/Acrobat Denial of Service Vulnerability (May 2009)

Adobe Reader/Acrobat is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Adobe Reader Denial of Service Vulnerability (May 2009)

Adobe Reader is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Adobe Acrobat Reader 8.1.2 ?9.0 getIcon() Memory Corruption Exploit

No description provided by source. Affected Version : Acrobat Reader 8.1.2 - 9.0 Vendor Patch : http://www.adobe.com/support/security/bulletins/apsb09-04.html Tested On : XP SP2 / SP3 from ZDI : http://www.zerodayinitiative.com/advisories/ZDI-09-014/ This vulnerability allows remote attackers to...

Adobe Acrobat Reader 8.1.2 – 9.0 getIcon() Memory Corruption Exploit

Exploit for unknown platform in category local exploits ==================================================================== Adobe Acrobat Reader 8.1.2 – 9.0 getIcon Memory Corruption Exploit ==================================================================== Affected Version : Acrobat Reader...

Adobe Acrobat Reader 8.1.2 < 9.0 - 'getIcon()' Memory Corruption

Affected Version : Acrobat Reader 8.1.2 - 9.0 Vendor Patch : http://www.adobe.com/support/security/bulletins/apsb09-04.html Tested On : XP SP2 / SP3 from ZDI : http://www.zerodayinitiative.com/advisories/ZDI-09-014/ This vulnerability allows remote attackers to execute arbitrary code on vulnerabl...

Preemptive Protection against Adobe Reader JavaScript getAnnots Method Memory Corruption Vulnerability

A memory corruption vulnerability has been reported in Adobe Reader and Acrobat. A remote attacker can exploit this vulnerability to execute arbitrary code on an affected system via a specially crafted PDF file. Portable Document Format PDF is an open file format created by Adobe Systems. It is...