CVE-2008-4813 — Out-of-bounds Write in Adobe Acrobat
Severity
9.3CRITICALNVD
EPSS
29.9%
top 3.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedNov 5
Latest updateMay 14
Description
Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allow remote attackers to execute arbitrary code via a crafted PDF document that (1) performs unspecified actions on a Collab object that trigger memory corruption, related to a GetCosObj method; or (2) contains a malformed PDF object that triggers memory corruption during parsing.
CVSS vector
AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0
Affected Packages2 packages
Patches
🔴Vulnerability Details
1📋Vendor Advisories
1Red Hat
▶
💬Community
1Bugzilla▶
CVE-2008-4813 Adobe Reader: PDF objects parsing and JavaScript getCosObj handling memory corruption flaw↗2008-11-04