Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-21608 PoC — Adobe Acrobat Reader DC resetForm Use-After-Free Remote Code Execution Vulnerability

Source
https://github.com/Malwareman007/CVE-2023-21608
Associated Vulnerability
Title:Adobe Acrobat Reader DC resetForm Use-After-Free Remote Code Execution Vulnerability (CVE-2023-21608)
Description:Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Description
Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit
Readme
# CVE-2023-21608
Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit

# Blog
https://medium.com/@Kushagra007/adobe-acrobat-reader-resetform-cagg-uaf-rce-exploit-cve-2023-21608-652624346c8f

# DEMO

https://user-images.githubusercontent.com/86009160/218384322-c012229a-1a29-4b2d-b107-b55747e4ee10.mp4
File Snapshot

 [4.0K]  /data/pocs/ea945accf45e233363aaba2d20035d910b2cf2b5
├── [1.1K]  crash.js
├── [2.8K]  crash.pdf
├── [ 11K]  exploit.js
├── [ 13K]  exploit.pdf
├── [ 26K]  LICENSE
└── [ 318]  README.md

0 directories, 6 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →