Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD78348EA2-EC91-11D8-B913-000C41E2CDAD
HistoryAug 12, 2004 - 12:00 a.m.

acroread uudecoder input validation error

2004-08-1200:00:00
vuxml.freebsd.org
20

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.137 Low

EPSS

Percentile

95.7%

JSON

An iDEFENSE security advisory reports:

Remote exploitation of an input validation error in the
uudecoding feature of Adobe Acrobat Reader (Unix) 5.0
allows an attacker to execute arbitrary code.
The Unix and Linux versions of Adobe Acrobat Reader 5.0
automatically attempt to convert uuencoded documents
back into their original format. The vulnerability
specifically exists in the failure of Acrobat Reader to
check for the backtick shell metacharacter in the filename
before executing a command with a shell. This allows a
maliciously constructed filename to execute arbitrary
programs.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchacroread< 5.0.9UNKNOWN
FreeBSDanynoarchacroread4< 5.0.9UNKNOWN
FreeBSDanynoarchacroread5< 5.0.9UNKNOWN

Related

openvas 4
securityvulns 1
cvelist 1
nvd 1
checkpoint_advisories 1
nessus 3
cve 1
gentoo 1
redhat 1
openvas
openvas
FreeBSD Ports: acroread, acroread4, acroread5
2008-09-04 00:00:00
FreeBSD Ports: acroread, acroread4, acroread5
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200408-14 (acroread)
2008-09-24 00:00:00
securityvulns
securityvulns
[Full-Disclosure] iDEFENSE Security Advisory 08.12.04a: Adobe Acrobat Reader &#40;Unix&#41; Shell Metacharacter Code Execution Vulnerability
2004-08-17 00:00:00
cvelist
cvelist
CVE-2004-0630
2004-08-14 04:00:00
nvd
nvd
CVE-2004-0630
2004-08-18 04:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Acrobat Reader (Unix) Shell Metacharacter Code Execution (CVE-2004-0630)
2009-11-03 00:00:00
nessus
nessus
FreeBSD : acroread uudecoder input validation error (78348ea2-ec91-11d8-b913-000c41e2cdad)
2004-08-12 00:00:00
RHEL 3 : acroread (RHSA-2004:432)
2004-08-26 00:00:00
GLSA-200408-14 : acroread: UUDecode filename buffer overflow
2004-08-30 00:00:00
cve
cve
CVE-2004-0630
2004-08-18 04:00:00
gentoo
gentoo
acroread: UUDecode filename buffer overflow
2004-08-15 00:00:00
redhat
redhat
(RHSA-2004:432) acroread security update
2004-08-26 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.137 Low

EPSS

Percentile

95.7%

JSON
Related for 78348EA2-EC91-11D8-B913-000C41E2CDAD
openvas4securityvulns1cvelist1nvd1checkpoint_advisories1nessus3cve1gentoo1redhat1