CVE-2007-5663

Adobe Reader and Acrobat 8.1.1 and earlier allows remote attackers to execute arbitrary code via a crafted PDF file that calls an insecure JavaScript method in the EScript.api plug-in. NOTE: this issue might be subsumed by CVE-2008-0655.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-02-12 19:00

Updated : 2024-02-04 17:13


NVD link : CVE-2007-5663

Mitre link : CVE-2007-5663

CVE.ORG link : CVE-2007-5663


JSON object : View

Products Affected

adobe

  • acrobat
  • acrobat_reader
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')