CVE-2007-1377

2007-03-1000:19:00

CWE-400

[email protected]

web.nvd.nist.gov

cve-2007-1377

adobe reader

acropdf.dll

denial of service

remote attack

6.5 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.007 Low

EPSS

Percentile

80.7%

JSON

AcroPDF.DLL in Adobe Reader 8.0, when accessed from Mozilla Firefox, Netscape, or Opera, allows remote attackers to cause a denial of service (unspecified resource consumption) via a .pdf URL with an anchor identifier that begins with search= followed by many %n sequences, a different vulnerability than CVE-2006-6027 and CVE-2006-6236.

CPENameOperatorVersion
netscape:navigatornetscape navigatoreq*
adobe:acrobat_readeradobe acrobat readereq8.0
mozilla:firefoxmozilla firefoxeq2.0.0.3
opera:opera_browseropera opera browsereq9.2

CPE	Name	Operator	Version
netscape:navigator	netscape navigator	eq	*
adobe:acrobat_reader	adobe acrobat reader	eq	8.0
mozilla:firefox	mozilla firefox	eq	2.0.0.3
opera:opera_browser	opera opera browser	eq	9.2