The following number of POCs (Proof of Concept) work on Adobe Reader 8.0. Other versions might be vulnerable too.
| description | test |
| open file:///C:/ inside the defailt browser windows | test |
| show the file path to the temporary stored PDF; reveils the username. | test |
| self-contained, local, Universal PDF XSS for Internet Explorer | test |
| self-contained, local, Universal PDF XSS for Firefox | test |
| self-contained, local, Universal PDF XSS for Opera | test |