CVE-2008-5331

Adobe Acrobat 9 uses more efficient encryption than previous versions, which makes it easier for attackers to guess a document's password via a brute-force attack.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://blogs.adobe.com/security/2008/12/acrobat_9_and_password_encrypt.html
http://www.elcomsoft.com/PR/apdfpr_081126_en.pdf
http://www.securityfocus.com/bid/32610

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:adobe:acrobat:9:::::::*
	cpe:2.3:a:adobe:acrobat:9.0::professional:::::
	cpe:2.3:a:adobe:acrobat:9.0::standard:::::

History

No history.

Information

Published : 2008-12-05 00:30

Updated : 2008-12-05 05:00

NVD link : CVE-2008-5331

Mitre link : CVE-2008-5331

CVE.ORG link : CVE-2008-5331

JSON object : View

Products Affected

adobe

acrobat

CWE

CWE-310

Cryptographic Issues

7.5 /10