The getAnnots Doc method in the JavaScript API in Adobe Reader and Acrobat 9.1, 8.1.4, 7.1.1, and previous versions allows remote malicious users to cause a denial of service (memory corruption) or execute arbitrary code via a PDF file that contains an annotation, and has an OpenAction entry with JavaScript code that calls this method with crafted integer arguments.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe acrobat |
||
adobe acrobat reader |