CVE-2014-0521
Adobe Reader and Acrobat 10.x < 10.1.10 and 11.x < 11.0.07 - Information Disclosure via JavaScript API
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2014-0521. PoCs published by molnarg.
AI-analyzed exploit summary This repository contains proof-of-concept PDFs exploiting CVE-2014-0521, a JavaScript-based vulnerability in Adobe Reader. The PoCs demonstrate file reading and exfiltration via WebDAV, targeting versions prior to 11.0.07.
Description
Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X do not properly implement JavaScript APIs, which allows remote attackers to obtain sensitive information via a crafted PDF document.
Exploits (1)
This repository contains proof-of-concept PDFs exploiting CVE-2014-0521, a JavaScript-based vulnerability in Adobe Reader. The PoCs demonstrate file reading and exfiltration via WebDAV, targeting versions prior to 11.0.07.