CVE-2005-1625

CVE-2005-1625 affects Adobe Reader on Unix, specifically versions 5.0.9 and 5.0.10. A stack-based buffer overflow in the UnixAppOpenFilePerform function can be triggered by a crafted PDF with a long /Filespec tag, enabling remote code execution. The provided connected sources confirm the vulnerab...

CVE-2005-1625

Stack-based buffer overflow in the UnixAppOpenFilePerform function in Adobe Reader 5.0.9 and 5.0.10 for Unix allows remote attackers to execute arbitrary code via a PDF document with a long /Filespec tag...

acroread -- buffer overflow vulnerability

An Adobe Security Advisory reports: A vulnerability within Adobe Reader has been identified. Under certain circumstances, remote exploitation of a buffer overflow in Adobe Reader could allow an attacker to execute arbitrary code. If exploited, it could allow the execution of arbitrary code under...

Adobe Reader for Linux symbolic links problem

Symbolic links problem on temporary files creation...

[SA14457] Adobe Reader for Linux Insecure Temporary File Creation

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

acroread -- insecure temporary file creation

Secunia Research reports: Secunia has discovered a security issue in Adobe Reader for Linux, which can be exploited by malicious, local users to gain knowledge of sensitive information. The problem is caused due to temporary files being created with permissions based on a user's umask in the "/tm...

Adobe Reader 7: XML External Entity (XXE) Attack

XML External Entity XXE Attack Possible in Adobe Reader 7 ----------------------------------------------------------- SHH 7, 2005-06-16 Description ----------- Recent versions of Adobe Reader previously known as Acrobat Reader are vulnerable to XML External Entity XXE Attacks. By including a...

CVE-2005-1306

The Adobe Reader control in Adobe Reader and Acrobat 7.0 and 7.0.1 allows remote attackers to determine the existence of files via Javascript containing XML script, aka the "XML External Entity vulnerability."...

CVE-2005-1306

The Adobe Reader control in Adobe Reader and Acrobat 7.0 and 7.0.1 allows remote attackers to determine the existence of files via Javascript containing XML script, aka the "XML External Entity vulnerability."...

Adobe Acrobat 7.0 Adobe Reader 7.0 - File Existence File Disclosure

Adobe Acrobat 7.0 Adobe Reader 7.0 - File Existence File Disclosure source: https://www.securityfocus.com/bid/13962/info Adobe Acrobat and Adobe Reader may allow remote attackers to determine the existence of files on a vulnerable computer. This issue can be used to disclose data from a target fi...

acroread -- XML External Entity vulnerability

Sverre H. Huseby discovered a vulnerability in Adobe Acrobat and Adobe Reader. Under certain circumstances, using XML scripts it is possible to discover the existence of local files...

PT-2005-2309 · Adobe · Reader +1

Name of the Vulnerable Software and Affected Versions: Adobe Reader and Acrobat versions 7.0 through 7.0.1 Description: The issue allows remote attackers to determine the existence of files via Javascript containing XML script. This is related to the XML External Entity vulnerability...

Local file detection found through Adobe Reader ActiveX control

Hyperdose Security Advisory Name: Local file detection found through Adobe Reader ActiveX control Systems Affected: Adobe Reader 7.0 and earlier Severity: Low Author: Robert Fly - [email protected] Advisory URL: http://www.hyperdose.com/advisories/H2005-06.txt --Adobe Description-- From...

[SA14813] Adobe Reader Local Files Detection Weakness

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Adobe Reader Local Files Detection Weakness SECUNIA...

Adobe Acrobat / Acrobat Reader local file access

SWF files embedded to document may access local files...

Adobe acrobat / Adobe Reader 6 can read local files

Adobe acrobat / Adobe Reader 6 can read local files Description Acrobat/ Acrobat reader is software for viewing and printing Adobe Portable Document Format PDF files. Adobe PDF files can be viewed on most major operating systems. Version 6 of this program has an issue with the way it handles...

CVE-2004-0629

CVE-2004-0629 concerns a buffer overflow in the ActiveX component pdf.ocx used by Adobe Acrobat 5.0.5 and Acrobat Reader (and possibly other versions). The flaw allows remote code execution when processing a PDF URI that ends with a null terminator (%00) followed by a long string, exploiting the ...

CVE-2004-0632

Adobe Reader 6.0 does not properly handle null characters when splitting a filename path into components, which allows remote attackers to execute arbitrary code via a file with a long extension that is not normally handled by Reader, triggering a buffer overflow...

CVE-2004-0632

Adobe Reader 6.0 does not properly handle null characters when splitting a filename path into components, which allows remote attackers to execute arbitrary code via a file with a long extension that is not normally handled by Reader, triggering a buffer overflow...

[Full-Disclosure] iDEFENSE Security Advisory 07.12.04: Adobe Reader 6.0 Filename Handler Buffer Overflow Vulnerability

Adobe Reader 6.0 Filename Handler Buffer Overflow Vulnerability iDEFENSE Security Advisory 07.12.04 www.idefense.com/application/poi/display?id=116&type=vulnerabilities July 12, 2004 I. BACKGROUND Adobe Reader is a program used to display Portable Document Format PDF documents. II. DESCRIPTION...