{ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2008-4813", "STATE" : "PUBLIC" }, "affects" : { "vendor" : { "vendor_data" : [ { "product" : { "product_data" : [ { "product_name" : "n/a", "version" : { "version_data" : [ { "version_value" : "n/a" } ] } } ] }, "vendor_name" : "n/a" } ] } }, "data_format" : "MITRE", "data_type" : "CVE", "data_version" : "4.0", "description" : { "description_data" : [ { "lang" : "eng", "value" : "Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allow remote attackers to execute arbitrary code via a crafted PDF document that (1) performs unspecified actions on a Collab object that trigger memory corruption, related to a GetCosObj method; or (2) contains a malformed PDF object that triggers memory corruption during parsing." } ] }, "problemtype" : { "problemtype_data" : [ { "description" : [ { "lang" : "eng", "value" : "n/a" } ] } ] }, "references" : { "reference_data" : [ { "name" : "20081104 ZDI-08-073: Adobe Acrobat Reader Malformed PDF Code Execution Vulnerability", "refsource" : "BUGTRAQ", "url" : "http://www.securityfocus.com/archive/1/498056/100/0/threaded" }, { "name" : "20081104 ZDI-08-074: Adobe Acrobat PDF Javascript getCosObj Memory Corruption Vulnerability", "refsource" : "BUGTRAQ", "url" : "http://www.securityfocus.com/archive/1/498057/100/0/threaded" }, { "name" : "http://www.zerodayinitiative.com/advisories/ZDI-08-073/", "refsource" : "MISC", "url" : "http://www.zerodayinitiative.com/advisories/ZDI-08-073/" }, { "name" : "http://www.zerodayinitiative.com/advisories/ZDI-08-074/", "refsource" : "MISC", "url" : "http://www.zerodayinitiative.com/advisories/ZDI-08-074/" }, { "name" : "http://www.adobe.com/support/security/bulletins/apsb08-19.html", "refsource" : "CONFIRM", "url" : "http://www.adobe.com/support/security/bulletins/apsb08-19.html" }, { "name" : "http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=800801", "refsource" : "CONFIRM", "url" : "http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=800801" }, { "name" : "http://www.adobe.com/support/security/bulletins/apsb09-04.html", "refsource" : "CONFIRM", "url" : "http://www.adobe.com/support/security/bulletins/apsb09-04.html" }, { "name" : "RHSA-2008:0974", "refsource" : "REDHAT", "url" : "http://www.redhat.com/support/errata/RHSA-2008-0974.html" }, { "name" : "249366", "refsource" : "SUNALERT", "url" : "http://download.oracle.com/sunalerts/1019937.1.html" }, { "name" : "SUSE-SR:2008:026", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html" }, { "name" : "TA08-309A", "refsource" : "CERT", "url" : "http://www.us-cert.gov/cas/techalerts/TA08-309A.html" }, { "name" : "32100", "refsource" : "BID", "url" : "http://www.securityfocus.com/bid/32100" }, { "name" : "1021140", "refsource" : "SECTRACK", "url" : "http://www.securitytracker.com/id?1021140" }, { "name" : "ADV-2008-3001", "refsource" : "VUPEN", "url" : "http://www.vupen.com/english/advisories/2008/3001" }, { "name" : "ADV-2009-0098", "refsource" : "VUPEN", "url" : "http://www.vupen.com/english/advisories/2009/0098" }, { "name" : "32872", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/32872" }, { "name" : "32700", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/32700" }, { "name" : "4564", "refsource" : "SREASON", "url" : "http://securityreason.com/securityalert/4564" }, { "name" : "adobe-acrobatreader-collab-code-execution(46344)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/46344" }, { "name" : "adobe-acrobatreader-object-code-execution(46333)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/46333" } ] } }