The customDictionaryOpen spell method in the JavaScript API in Adobe Reader 9.1, 8.1.4, 7.1.1, and previous versions on Linux and UNIX allows remote malicious users to cause a denial of service (memory corruption) or execute arbitrary code via a PDF file that triggers a call to this method with a long string in the second argument.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe reader 9.1 |
||
adobe reader 8.1.4 |