Vulnerability Description
Unspecified vulnerability in a JavaScript method in Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allows remote attackers to execute arbitrary code via unknown vectors, related to an "input validation issue."
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Acrobat | <= 8.1.2 |
| Adobe | Acrobat Reader | <= 8.0 |
Related Weaknesses (CWE)
References
- http://download.oracle.com/sunalerts/1019937.1.html
- http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html
- http://secunia.com/advisories/32700
- http://secunia.com/advisories/32872
- http://www.adobe.com/support/security/bulletins/apsb08-19.htmlPatchVendor Advisory
- http://www.adobe.com/support/security/bulletins/apsb09-04.html
- http://www.redhat.com/support/errata/RHSA-2008-0974.html
- http://www.securityfocus.com/bid/32100
- http://www.securitytracker.com/id?1021140
- http://www.skyrecon.com/index.php?option=com_content&task=view&id=302&Itemid=124
- http://www.us-cert.gov/cas/techalerts/TA08-309A.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2008/3001
- http://www.vupen.com/english/advisories/2009/0098
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46334
- http://download.oracle.com/sunalerts/1019937.1.html
FAQ
What is CVE-2008-4814?
CVE-2008-4814 is a vulnerability with a CVSS score of 9.3 (HIGH). Unspecified vulnerability in a JavaScript method in Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allows remote attackers to execute arbitrary code via unknown vectors, related to an "...
How severe is CVE-2008-4814?
CVE-2008-4814 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-4814?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Acrobat, Adobe Acrobat Reader.