9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.358 Low
EPSS
Percentile
97.1%
Adobe Reader and Acrobat 8.1.1 and earlier allows remote attackers to
execute arbitrary code via a crafted PDF file that calls an insecure
JavaScript method in the EScript.api plug-in. NOTE: this issue might be
subsumed by CVE-2008-0655.