The host is installed with Adobe Reader and Acrobat and is prone to cross-site scripting (XSS) vulnerability. A flaw is present in the applications, which fail to properly validate user-supplied input that leads to execution of scripts, once the URL is clicked in a victim's web browser within the security context of the hosting web site. Successful exploitation allows remote attackers to inject arbitrary web script or HTML using unspecified vectors.