Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2007-0047
HistoryJan 03, 2007 - 9:28 p.m.

CVE-2007-0047

2007-01-0321:28:00
mitre
web.nvd.nist.gov
31
cve-2007-0047
adobe acrobat reader
crlf injection
http response splitting
activex
internet explorer
security vulnerability

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

Low

EPSS

0.059

Percentile

93.5%

JSON

CRLF injection vulnerability in Adobe Acrobat Reader Plugin before 8.0.0, when used with the Microsoft.XMLHTTP ActiveX object in Internet Explorer, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the javascript: URI in the (1) FDF, (2) XML, or (3) XFDF AJAX request parameters.

Affected configurations

Nvd
Node
adobeacrobat_readerRange7.0.8
VendorProductVersionCPE
adobeacrobat_reader*cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*

Related

prion 1
cvelist 1
nvd 1
openvas 6
checkpoint_advisories 1
kaspersky 1
nessus 5
suse 1
securityvulns 1
prion
prion
Crlf injection
2007-01-03 21:28:00
cvelist
cvelist
CVE-2007-0047
2007-01-03 20:00:00
nvd
nvd
CVE-2007-0047
2007-01-03 21:28:00
openvas
openvas
Adobe Reader Multiple Vulnerabilities (Jan 2007) - Mac OS X
2014-04-11 00:00:00
Adobe Reader Multiple Vulnerabilities (Jan 2007) - Linux
2014-04-11 00:00:00
Adobe Reader Multiple Vulnerabilities (Jan 2007) - Windows
2014-04-11 00:00:00
checkpoint_advisories
checkpoint_advisories
Update Protection against Multiple Adobe Acrobat Vulnerabilities
2007-01-21 00:00:00
kaspersky
kaspersky
KLA10032 Multiple vulnerabilities in Adobe Acrobat & Reader
2007-01-09 00:00:00
nessus
nessus
Adobe PDF Plug-In < 8.0 / 7.0.9 / 6.0.6 Multiple Vulnerabilities (APSB07-01)
2007-01-05 00:00:00
openSUSE 10 Security Update : acroread (acroread-2506)
2007-10-17 00:00:00
Adobe Reader < 6.0.6 / 7.0.9 Multiple Vulnerabilities
2007-01-10 00:00:00
suse
suse
remote code execution in acroread
2007-01-22 18:37:17
securityvulns
securityvulns
Adobe reader plugin PDF files universal crossite scripting
2007-01-04 00:00:00

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

Low

EPSS

0.059

Percentile

93.5%

JSON
Related for CVE-2007-0047
prion1cvelist1nvd1openvas6checkpoint_advisories1kaspersky1nessus5suse1securityvulns1