This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of arguments passed to the makeMeasurement method. A specially crafted argument to makeMeasurement will leave objects in an inconsistent state. This data can later be retrieved via a call to dumpMeasureData. An attacker can leverage this vulnerability to disclose sensitive information about the current process.