CVE-2008-4814
published 2008-11-05CVE-2008-4814: Unspecified vulnerability in a JavaScript method in Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allows remote attackers to execute arbitrary…
PriorityP349critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
11.87%
95.6th percentile
Unspecified vulnerability in a JavaScript method in Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allows remote attackers to execute arbitrary code via unknown vectors, related to an "input validation issue."
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat | <= 8.1.2 | — |
| adobe | acrobat | — | — |
| adobe | acrobat_reader | <= 8.0 | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
Reader: arbitrary code execution via unspecified JavaScript method
vendor_redhat·2008-11-04·CVSS 9.3
CVE-2008-4814 [CRITICAL] Reader: arbitrary code execution via unspecified JavaScript method
Reader: arbitrary code execution via unspecified JavaScript method
Unspecified vulnerability in a JavaScript method in Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allows remote attackers to execute arbitrary code via unknown vectors, related to an "input validation issue."
GHSA
GHSA-3543-r684-9c6x: Unspecified vulnerability in a JavaScript method in Adobe Reader and Acrobat 8
ghsa_unreviewed·2022-05-14
CVE-2008-4814 [HIGH] CWE-20 GHSA-3543-r684-9c6x: Unspecified vulnerability in a JavaScript method in Adobe Reader and Acrobat 8
Unspecified vulnerability in a JavaScript method in Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allows remote attackers to execute arbitrary code via unknown vectors, related to an "input validation issue."
No detection rules found.
No public exploits indexed.
http://download.oracle.com/sunalerts/1019937.1.htmlhttp://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.htmlhttp://secunia.com/advisories/32700http://secunia.com/advisories/32872http://www.adobe.com/support/security/bulletins/apsb08-19.htmlhttp://www.adobe.com/support/security/bulletins/apsb09-04.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0974.htmlhttp://www.securityfocus.com/bid/32100http://www.securitytracker.com/id?1021140http://www.skyrecon.com/index.php?option=com_content&task=view&id=302&Itemid=124http://www.us-cert.gov/cas/techalerts/TA08-309A.htmlhttp://www.vupen.com/english/advisories/2008/3001http://www.vupen.com/english/advisories/2009/0098https://exchange.xforce.ibmcloud.com/vulnerabilities/46334http://download.oracle.com/sunalerts/1019937.1.htmlhttp://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.htmlhttp://secunia.com/advisories/32700http://secunia.com/advisories/32872http://www.adobe.com/support/security/bulletins/apsb08-19.htmlhttp://www.adobe.com/support/security/bulletins/apsb09-04.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0974.htmlhttp://www.securityfocus.com/bid/32100http://www.securitytracker.com/id?1021140http://www.skyrecon.com/index.php?option=com_content&task=view&id=302&Itemid=124http://www.us-cert.gov/cas/techalerts/TA08-309A.htmlhttp://www.vupen.com/english/advisories/2008/3001http://www.vupen.com/english/advisories/2009/0098https://exchange.xforce.ibmcloud.com/vulnerabilities/46334
2008-11-05
Published