CVE-2007-5663
7.1 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.358 Low
EPSS
Percentile
97.1%
Adobe Reader and Acrobat 8.1.1 and earlier allows remote attackers to execute arbitrary code via a crafted PDF file that calls an insecure JavaScript method in the EScript.api plug-in. NOTE: this issue might be subsumed by CVE-2008-0655.
| CPE | Name | Operator | Version |
|---|---|---|---|
| adobe:acrobat_reader | adobe acrobat reader | le | 8.1.1 |
| adobe:acrobat | adobe acrobat | le | 8.1.1 |
References
labs.idefense.com/intelligence/vulnerabilities/display.php?id=656
secunia.com/advisories/29065
secunia.com/advisories/29205
secunia.com/advisories/30840
security.gentoo.org/glsa/glsa-200803-01.xml
sunsolve.sun.com/search/document.do?assetkey=1-26-239286-1
www.adobe.com/support/security/advisories/apsa08-01.html
www.adobe.com/support/security/bulletins/apsb08-13.html
www.kb.cert.org/vuls/id/140129
www.redhat.com/support/errata/RHSA-2008-0144.html
www.us-cert.gov/cas/techalerts/TA08-043A.html
www.vupen.com/english/advisories/2008/1966/references
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9928
Social References
More
Related
7.1 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.358 Low
EPSS
Percentile
97.1%