Candidate: CVE-2009-1492
PublicDate: 2009-04-30 20:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1492
 http://blogs.adobe.com/psirt/2009/04/update_on_adobe_reader_issue.html
Description:
 The getAnnots Doc method in the JavaScript API in Adobe Reader and Acrobat
 9.1, 8.1.4, 7.1.1, and earlier allows remote attackers to cause a denial of
 service (memory corruption) or execute arbitrary code via a PDF file that
 contains an annotation, and has an OpenAction entry with JavaScript code
 that calls this method with crafted integer arguments.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.edge.launchpad.net/ubuntu/+source/acroread/+bug/371954
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_acroread:
upstream_acroread: needs-triage
dapper_acroread: ignored (reached end-of-life)
hardy_acroread: released (9.1.2-0hardy3)
intrepid_acroread: released (9.1.2-3intrepid1)
jaunty_acroread: released (9.1.2-3jaunty1)
karmic_acroread: released (9.2-1karmic1)
devel_acroread: released (9.3.2-lucid1)