7 matches found
Adobe Reader for Android < 11.2.0 - 'addJavascriptInterface' Local Overflow (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/exploit/fileformat' require 'msf/core/exploit/pdf' require 'msf/core/exploit/android' class Metasploit3 'Adobe Reader for Android...
Adobe Reader for Android addJavascriptInterface Exploit
Adobe Reader versions less than 11.2.0 exposes insecure native interfaces to untrusted javascript in a PDF. This module embeds the browser exploit from android/webviewaddjavascriptinterface into a PDF to get a command shell on vulnerable versions of Reader. This module requires Metasploit:...
Adobe Reader Mobile JavaScript Interface Java Code Execution (CVE-2014-0514)
A code execution vulnerability exists in Adobe Mobile Reader for Android. The vulnerability is due to a failure to restrict access to certain JavaScript interfaces. A remote unauthenticated attacker could exploit this vulnerability by enticing a target user to open a crafted document...
CVE-2014-0514
The Adobe Reader Mobile application before 11.2 for Android does not properly restrict use of JavaScript, which allows remote attackers to execute arbitrary code via a crafted PDF document, a related issue to CVE-2012-6636...
CVE-2014-0514
CVE-2014-0514 affects Adobe Reader Mobile for Android prior to 11.2.0, where insecure JavaScript interfaces in the PDF reader can be abused via a crafted document to achieve remote code execution. The vulnerability stems from insufficient restriction of JavaScript-accessible interfaces (WebView/W...
Update Adobe Reader app for Android to Patch Remote Code Execution Vulnerability
If you're one of the 400 million Android users out there who have installed Adobe Reader app that helps you to view PDF documents on mobile devices, then you should immediately update your app from Google Play Store. Adobe has released an updated Adobe Reader 11.2.0 version to addresses an...
CVE-2014-0514
creationtimestamp| type| source ---|---|--- 2014-04-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32884 2014-06-17 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/33791 2018-05-29 15:50:33+00:00| seen|...