Arr1val

2 exploits Active since Apr 2009

CVE-2009-1493 EXPLOITDB text WORKING POC

Adobe Reader - Resource Management Error

The customDictionaryOpen spell method in the JavaScript API in Adobe Reader 9.1, 8.1.4, 7.1.1, and earlier on Linux and UNIX allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a PDF file that triggers a call to this method with a long string in the second argument.

View Code

CVE-2009-1492 EXPLOITDB text WORKING POC

Adobe Acrobat < 7.1.1 - Resource Management Error

The getAnnots Doc method in the JavaScript API in Adobe Reader and Acrobat 9.1, 8.1.4, 7.1.1, and earlier allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a PDF file that contains an annotation, and has an OpenAction entry with JavaScript code that calls this method with crafted integer arguments.

View Code