Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0726

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-0726
Last Modified 07 Mar 2011 10:05:21
Published 12 Feb 2008 03:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-0726

Summary

Integer overflow in Adobe Reader and Acrobat 8.1.1 and earlier allows remote attackers to execute arbitrary code via crafted arguments to the printSepsWithParams, which triggers memory corruption.

Vulnerable Systems

Application

  • Adobe Acrobat 8.1.1

  • Adobe Acrobat Reader 8.1.1


References

CONFIRM - http://www.adobe.com/support/security/advisories/apsa08-01.html

MISC - http://www.zerodayinitiative.com/advisories/ZDI-08-004.html

VUPEN - ADV-2008-1966

BUGTRAQ - 20080211 ZDI-08-004: Adobe AcrobatReader Javascript for PDF Integer Overflow Vulnerability

REDHAT - RHSA-2008:0144

SUNALERT - 239286

SECUNIA - 30840

SECUNIA - 29065

SECUNIA - 28983

SUSE - SUSE-SA:2008:009

CONFIRM - http://www.adobe.com/support/security/bulletins/apsb08-13.html

GENTOO - GLSA-200803-01

SECUNIA - 29205

Related Patches

Adobe Acrobat 7.1.0 Update for Mac

Adobe Acrobat 8.1.2 Update for Mac

Adobe Reader 8.1.2 Update for Macintosh (PPC) (Rev 2)

Adobe Reader 8.1.2 Update (See Note) (Rev 6)


Last Updated: 27 May 2016 10:46:54