Oval Definition:oval:org.mitre.oval:def:7466
Revision Date:2013-08-12Version:22
Title:Adobe Reader 9.3.1 on Windows does not restrict the contents of one text field in the Launch File warning dialog
Description:Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, do not restrict the contents of one text field in the Launch File warning dialog, which makes it easier for remote attackers to trick users into executing an arbitrary local program that was specified in a PDF document, as demonstrated by a text field that claims that the Open button will enable the user to read an encrypted message.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-1240
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Adobe Reader
Definition Synopsis
  • Adobe Reader 8
  • Adobe Reader 8 Series is installed
  • AND Adobe Reader 8, the sub-version is vulnerable
  • Adobe Reader is less than 8.2.3
  • OR Adobe Reader library is less than 8.2.3
  • OR Adobe Reader 9
  • Adobe Reader 9 Series is installed
  • AND Adobe Reader 9, the sub-version is vulnerable
  • Adobe Reader is less than 9.3.3
  • OR Adobe Reader library is less than 9.3.3
  • OR Adobe Acrobat 8
  • Adobe Acrobat 8 Series is installed
  • AND Adobe Acrobat 8, the sub-version is vulnerable
  • Adobe Acrobat is less than 8.2.3
  • OR Adobe Acrobat library is less than 8.2.3
  • OR Adobe Acrobat 9
  • Adobe Acrobat 9 Series is installed
  • AND Adobe Acrobat 9, the sub-version is vulnerable
  • Adobe Acrobat is less than 9.3.3
  • OR Adobe Acrobat library is less than 9.3.3
    • BACK