CVE-2008-4814

2008-11-0515:00:14

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.318

Percentile

97.0%

JSON

Unspecified vulnerability in a JavaScript method in Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allows remote attackers to execute arbitrary code via unknown vectors, related to an “input validation issue.”

Affected configurations

Nvd

Node

adobeacrobatRange≤8.1.2unknown3d

adobeacrobatRange≤8.1.2unknownprofessional

adobeacrobatRange≤8.1.2unknownstandard

adobeacrobatMatch8.1.1

adobeacrobatMatch8.1.1unknown3d

adobeacrobatMatch8.1.1unknownprofessional

adobeacrobatMatch8.1.1unknownstandard

adobeacrobat_readerRange≤8.0

VendorProductVersionCPE
adobeacrobat*cpe:2.3:a:adobe:acrobat:*:unknown:3d:*:*:*:*:*
adobeacrobat*cpe:2.3:a:adobe:acrobat:*:unknown:professional:*:*:*:*:*
adobeacrobat*cpe:2.3:a:adobe:acrobat:*:unknown:standard:*:*:*:*:*
adobeacrobat8.1.1cpe:2.3:a:adobe:acrobat:8.1.1:*:*:*:*:*:*:*
adobeacrobat8.1.1cpe:2.3:a:adobe:acrobat:8.1.1:unknown:3d:*:*:*:*:*
adobeacrobat8.1.1cpe:2.3:a:adobe:acrobat:8.1.1:unknown:professional:*:*:*:*:*
adobeacrobat8.1.1cpe:2.3:a:adobe:acrobat:8.1.1:unknown:standard:*:*:*:*:*
adobeacrobat_reader*cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	acrobat	*	cpe:2.3:a:adobe:acrobat::unknown:3d:::::
adobe	acrobat	*	cpe:2.3:a:adobe:acrobat::unknown:professional:::::
adobe	acrobat	*	cpe:2.3:a:adobe:acrobat::unknown:standard:::::
adobe	acrobat	8.1.1	cpe:2.3:a:adobe:acrobat:8.1.1:::::::*
adobe	acrobat	8.1.1	cpe:2.3:a:adobe:acrobat:8.1.1:unknown:3d:::::*
adobe	acrobat	8.1.1	cpe:2.3:a:adobe:acrobat:8.1.1:unknown:professional:::::*
adobe	acrobat	8.1.1	cpe:2.3:a:adobe:acrobat:8.1.1:unknown:standard:::::*
adobe	acrobat_reader	*	cpe:2.3:a:adobe:acrobat_reader::::::::