The Adobe Acrobat ActiveX control has a buffer overflow in the setview method. Because the control is marked safe-for-scripting, this vulnerability can be exploited via a web page if the user has the vulnerable control installed. This control is implemtned in the file pdf.ocx and has a ClassID of {CA8A9780-280D-11CF-A24D-444553540000}. The control can also be referenced as PDF.PdfCtrl.1. Impact: An attacker may exploit the buffer overflow to execute arbitrary commands on the system running the vulnerable control. Because the control is marked safe-for-scripting, an attacker may be able to launch this attack when you visit a web page. Resolution: Upgrade to a newer version of Adobe Acrobat This problem appears to be limited to version 1.3.188 of Adobe Acrobat and earlier.