Adobe · Acrobat Reader · CVE-2003-0142
Name of the Vulnerable Software and Affected Versions:
Adobe Acrobat Reader version 6
Description:
The issue allows attackers to cause Adobe Acrobat Reader to enter Certified mode and run untrusted plugins by modifying the `CTIsCertifiedMode` function under certain circumstances when the "Certified plug-ins only" option is disabled. This can occur when Adobe Acrobat Reader loads plug-ins with signatures used for older versions of Acrobat.
Recommendations:
For Adobe Acrobat Reader version 6, consider disabling the `CTIsCertifiedMode` function as a temporary workaround until a patch is available. Additionally, enabling the "Certified plug-ins only" option can help minimize the risk of exploitation.