5961 matches found
Cross site request forgery (csrf)
Adobe Acrobat Reader Plugin before 8.0.0 for the Firefox, Internet Explorer, and Opera web browsers allows remote attackers to force the browser to make unauthorized requests to other web sites via a URL in the 1 FDF, 2 xml, and 3 xfdf AJAX request parameters, following the hash character, aka...
Double free
Double free vulnerability in the Adobe Acrobat Reader Plugin before 8.0.0, as used in Mozilla Firefox 1.5.0.7, allows remote attackers to execute arbitrary code by causing an error via a javascript: URI call to document.write in the 1 FDF, 2 XML, or 3 XFDF AJAX request parameters...
CVE-2007-0046
Double free vulnerability in the Adobe Acrobat Reader Plugin before 8.0.0, as used in Mozilla Firefox 1.5.0.7, allows remote attackers to execute arbitrary code by causing an error via a javascript: URI call to document.write in the 1 FDF, 2 XML, or 3 XFDF AJAX request parameters...
CVE-2007-0047
CRLF injection vulnerability in Adobe Acrobat Reader Plugin before 8.0.0, when used with the Microsoft.XMLHTTP ActiveX object in Internet Explorer, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the javascript: URI in the...
CVE-2007-0048
Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, when used with Internet Explorer, Google Chrome, or Opera, allows remote attackers to cause a denial of service memory consumption via a long...
Cross site scripting
Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, when used with Internet Explorer, Google Chrome, or Opera, allows remote attackers to cause a denial of service memory consumption via a long...
CVE-2007-0044
Adobe Acrobat Reader Plugin before 8.0.0 for the Firefox, Internet Explorer, and Opera web browsers allows remote attackers to force the browser to make unauthorized requests to other web sites via a URL in the 1 FDF, 2 xml, and 3 xfdf AJAX request parameters, following the hash character, aka...
CVE-2007-0046
CVE-2007-0046 is a double‑free vulnerability in the Adobe Acrobat Reader Plugin used by Mozilla Firefox 1.5.0.7, enabling remote code execution via a javascript: URI causing document.write. Affected component is the Acrobat Reader plugin; impact is arbitrary code execution in the user context. Pu...
CVE-2007-0047
CRLF injection vulnerability in Adobe Acrobat Reader Plugin before 8.0.0, when used with the Microsoft.XMLHTTP ActiveX object in Internet Explorer, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the javascript: URI in the...
CVE-2007-0045
Multiple cross-site scripting XSS vulnerabilities in Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, for Mozilla Firefox, Microsoft Internet Explorer 6 SP1, Google Chrome, Opera 8.5.4 build 770...
CVE-2007-0046
Double free vulnerability in the Adobe Acrobat Reader Plugin before 8.0.0, as used in Mozilla Firefox 1.5.0.7, allows remote attackers to execute arbitrary code by causing an error via a javascript: URI call to document.write in the 1 FDF, 2 XML, or 3 XFDF AJAX request parameters...
CVE-2007-0047
CVE-2007-0047 : The Adobe Acrobat Reader Plugin (pre-8.0.0) is vulnerable when used with the Microsoft.XMLHTTP ActiveX object in Internet Explorer. The issue allows remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting via CRLF sequences in the javascript: URI cont...
CVE-2007-0048
CVE-2007-0048 affects Adobe Acrobat Reader/Plugin when used with Internet Explorer, Chrome, or Opera. A crafted PDF URL containing a long sequence of # characters exploits a cross-site scripting issue to trigger memory exhaustion, causing a denial of service. Affected are the Acrobat/Reader plugi...
CVE-2007-0044
Adobe Acrobat Reader Plugin before 8.0.0 for the Firefox, Internet Explorer, and Opera web browsers allows remote attackers to force the browser to make unauthorized requests to other web sites via a URL in the 1 FDF, 2 xml, and 3 xfdf AJAX request parameters, following the hash character, aka...
CVE-2007-0044
CVE-2007-0044 affects Adobe Acrobat Reader Plugin for Firefox/IE/Opera, with the vulnerability allowing remote attackers to induce the browser to make unauthorized requests to other sites via AJAX requests (parameters in FDF/xml/xfdf) after the hash, i.e., a cross-site request forgery (CSRF) in t...
Solaris 10 (sparc) : 121136-02 (deprecated)
SunOS 5.10: Adobe Acrobat Reader browser-plugin patch. Date this patch was last updated by Sun : Jul/30/08 This plugin has been deprecated and either replaced with individual 121136 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
Solaris 10 (sparc) : 121104-11 (deprecated)
SunOS 5.10: Adobe Acrobat Reader patch. Date this patch was last updated by Sun : Nov/27/09 This plugin has been deprecated and either replaced with individual 121104 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled...
CVE-2006-3093
Multiple unspecified vulnerabilities in Adobe Acrobat Reader acroread before 7.0.8 have unknown impact and unknown vectors...
CVE-2006-3093
CVE-2006-3093 maps to multiple unspecified vulnerabilities in Adobe Acrobat Reader (acroread) prior to 7.0.8, with unknown impact and vectors per the CVE entry. Connected sources confirm the affected product and version (acroread
Critical: Red Hat Security Advisory: Adobe Acrobat Reader security update
Updated acroread packages that fix a security issue are now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. The Adobe Acrobat Reader allows users to view and print documents in portable document format PDF. A buffer overflow bug has...