CVE-2008-2992

Name of the Vulnerable Software and Affected Versions Adobe Acrobat and Reader versions 8.1.2 and earlier

Description The issue is related to a stack-based buffer overflow in Adobe Acrobat and Reader, allowing remote attackers to execute arbitrary code via a PDF file that calls the util.printf() JavaScript function with a crafted format string argument. This is due to incorrect input validation, which can lead to a buffer overflow in memory when the util.printf() function is called. The exploitation of this issue can allow a remote attacker to execute arbitrary code by opening a specially crafted malicious PDF file or link.

Recommendations For Adobe Acrobat and Reader versions 8.1.2 and earlier, consider disabling the util.printf() JavaScript function as a temporary workaround until a patch is available. Restrict access to PDF files from untrusted sources to minimize the risk of exploitation.