Vulnerability Details CVE-2013-5325
Adobe Reader and Acrobat 11.x before 11.0.05 on Windows allow remote attackers to execute arbitrary JavaScript code in a javascript: URL via a crafted PDF document.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.6%
CVSS Severity
CVSS v2 Score 9.3
References
- http://www.adobe.com/support/security/bulletins/apsb13-25.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19053
- http://www.adobe.com/support/security/bulletins/apsb13-25.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19053
Products affected by CVE-2013-5325
-
cpe:2.3:a:adobe:acrobat:11.0
-
cpe:2.3:a:adobe:acrobat:11.0.1
-
cpe:2.3:a:adobe:acrobat:11.0.2
-
cpe:2.3:a:adobe:acrobat:11.0.3
-
cpe:2.3:a:adobe:acrobat:11.0.4
-
cpe:2.3:a:adobe:acrobat_reader:11.0
-
cpe:2.3:a:adobe:acrobat_reader:11.0.1
-
cpe:2.3:a:adobe:acrobat_reader:11.0.2
-
cpe:2.3:a:adobe:acrobat_reader:11.0.3
-
cpe:2.3:a:adobe:acrobat_reader:11.0.4
-
cpe:2.3:o:microsoft:windows:-
-
cpe:2.3:o:microsoft:windows:1.0
-
cpe:2.3:o:microsoft:windows:2.0
-
cpe:2.3:o:microsoft:windows:2000
-
cpe:2.3:o:microsoft:windows:3.0
-
cpe:2.3:o:microsoft:windows:3.1
-
cpe:2.3:o:microsoft:windows:3.11
-
cpe:2.3:o:microsoft:windows:server_2008
-
cpe:2.3:o:microsoft:windows:vista