CVE-2009-1492

CVE-2009-1492 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The getAnnots Doc method in the JavaScript API in Adobe Reader and Acrobat 9.1, 8.1.4, 7.1.1, and earlier allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a PDF file that contains an annotation, and has an OpenAction entry with JavaScript code that calls this method with crafted integer arguments.

Learn more about our Api Penetration Testing.