Code injection

2007-03-0221:18:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.056 Low

EPSS

Percentile

93.1%

JSON

Adobe Reader and Acrobat Trial allow remote attackers to read arbitrary files via a file:// URI in a PDF document, as demonstrated with <</URI(file:///C:/)/S/URI>>, a different issue than CVE-2007-0045.

CPENameOperatorVersion
acrobat_readereq7.0.9
acrobat_readereq5.0.10
acrobat_readereq4.5
acrobat_readereq5.0
acrobat_readereq5.0.9
acrobat_readereq7.0.5
acrobat_readereq7.0.6
acrobat_readereq4.0.5
acrobat_readereq4.0
acrobat_readereq7.0.8

Name	Operator	Version
acrobat_reader	eq	7.0.9
acrobat_reader	eq	5.0.10
acrobat_reader	eq	4.5
acrobat_reader	eq	5.0
acrobat_reader	eq	5.0.9
acrobat_reader	eq	7.0.5
acrobat_reader	eq	7.0.6
acrobat_reader	eq	4.0.5
acrobat_reader	eq	4.0
acrobat_reader	eq	7.0.8