[CVE-2008-2992] Adobe Reader and Acrobat Input Validation Vulnerability

NVD 상세 정보

설명: Stack-based buffer overflow in Adobe Acrobat and Reader 8.1.2 and earlier allows remote attackers to execute arbitrary code via a PDF file that calls the util.printf JavaScript function with a crafted format string argument, a related issue to CVE-2008-1104.

CWE: CWE-787 | CWE-787

참조

• http://download.oracle.com/sunalerts/1019937.1.html [Third Party Advisory]
• http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html [Mailing List, Third Party Advisory]
• http://osvdb.org/49520 [Broken Link]
• http://secunia.com/advisories/29773 [Broken Link, Vendor Advisory]
• http://secunia.com/advisories/32700 [Broken Link, Vendor Advisory]
• http://secunia.com/advisories/32872 [Broken Link, Vendor Advisory]
• http://secunia.com/advisories/35163 [Broken Link, Vendor Advisory]
• http://secunia.com/secunia_research/2008-14/ [Broken Link, Vendor Advisory]
• http://securityreason.com/securityalert/4549 [Broken Link, Exploit]
• http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=800801 [Broken Link]
• http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=909609 [Broken Link]
• http://www.adobe.com/support/security/bulletins/apsb08-19.html [Broken Link, Patch, Vendor Advisory]
• http://www.coresecurity.com/content/adobe-reader-buffer-overflow [Third Party Advisory]
• http://www.kb.cert.org/vuls/id/593409 [Third Party Advisory, US Government Resource]
• http://www.redhat.com/support/errata/RHSA-2008-0974.html [Broken Link, Patch]
• ... 외 40건