Launchpad CVE tracker

CVE 2008-4817

The Download Manager in Adobe Acrobat Professional and Reader 8.1.2 and earlier allows remote attackers to execute arbitrary code via a crafted PDF document that calls an AcroJS function with a long string argument, triggering heap corruption.

Related bugs and status

CVE-2008-4817 (Candidate) is related to these bugs:

Bug #293861: Adobe Reader multiple vulnerabilities(APSB08-19), update to 8.1.3

Summary				In	Importance	Status
	293861	Adobe Reader multiple vulnerabilities(APSB08-19), update to 8.1.3		Ubuntu Japanese Kaizen Project	High	Fix Released

Bug #384168: Please update Adobe Reader to either version 8.1.6 or 9.1.3

Summary				In	Importance	Status
	384168	Please update Adobe Reader to either version 8.1.6 or 9.1.3		The Dell Mini Project	Undecided	Confirmed

See the

CVE page on Mitre.org for more details.

References

IDEFENSE: 20081104 Adobe Acrobat...
CONFIRM: http://www.adobe.com/s...
OSVDB: 49541
SUSE: SUSE-SR:2008:026
CERT: TA08-309A
SECUNIA: 32872
REDHAT: RHSA-2008:0974
SECUNIA: 32700
VUPEN: ADV-2008-3001
VUPEN: ADV-2009-0098
SECTRACK: 1021140
SUNALERT: 249366

Launchpad.net

CVE 2008-4817

Related bugs and status

Related bugs

References