Adobe Acrobat and Reader Thumbnails Use-After-Free Remote Code Execution Vulnerability

Adobe Acrobat and Reader are prone to a remote code-execution vulnerability because they fail to properly validate user-supplied input.

Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploits can trigger a denial of service.

Adobe Acrobat and Reader versions prior to and including 9.3.4 and 8.2.4 are affected.


Privacy Statement
Copyright 2010, SecurityFocus