Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allow remote attackers to execute arbitrary code via a crafted PDF document that (1) performs unspecified actions on a Collab object that trigger memory corruption, related to a GetCosObj method; or (2) contains a malformed PDF object that triggers memory corruption during parsing.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Acrobat | Adobe | * | 8.1.2 (including) |
| Acrobat | Adobe | 8.1.1 (including) | 8.1.1 (including) |
| Acrobat | Adobe | 8.1.1-unknown (including) | 8.1.1-unknown (including) |
| Acrobat_reader | Adobe | * | 8.0 (including) |
| Extras for RHEL 3 | RedHat | acroread-0:8.1.3-1 | * |
| Extras for RHEL 4 | RedHat | acroread-0:8.1.3-1.el4 | * |
| Supplementary for Red Hat Enterprise Linux 5 | RedHat | acroread-0:8.1.3-1.el5 | * |
| Acroread | Ubuntu | dapper | * |