The host is installed with Adobe Reader or Acrobat 7.x before 7.1.1, 8.x before 8.1.4 or 9.x before 9.1 and is prone to a denial of service vulnerability. The flaw is present in the JavaScript API, which fails to handle getAnnots Doc method in the JavaScript API. Successful exploitation allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code.