CVE-2021-39823

Adobe svg-native-viewer 8182d14dfad5d1e10f53ed830328d7d9a3cfa96d and earlier versions are affected by a heap buffer overflow vulnerability due to insecure handling of a malicious .svg file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is...

Adobe SVG-Native-Viewer 安全漏洞

Adobe SVG Native Viewer is a library for parsing and rendering SVG Native documents from Adobe USA. A security vulnerability exists in Adobe SVG-Native-Viewer, which can be exploited by an attacker to execute arbitrary code...

Adobe SVG Viewer 3.0 ActiveX Control SRC Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13490/info The Adobe SVG Viewer ActiveX control is prone to an information disclosure vulnerability. Reports indicate that the Adobe SVG Viewer ActiveX control may be employed to disclose the existence of a target file...

Adobe SVG Viewer 3.0 postURL/getURL Restriction Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8785/info Adobe SVG Viewer ASV is prone to an issue in the implementation of the getURL and postURL methods. These methods are designed to prevent access to URIs in a foreign domain or local files. However, by using a...

Adobe SVG Viewer Circle Transform Remote Code Execution

The version of Adobe SVG Viewer on the remote host has a remote code execution vulnerability. A remote attacker could exploit this by tricking a user into requesting a maliciously crafted web page, resulting in arbitrary code execution. C Tenable Network Security, Inc. include"compat.inc"; if...

Adobe SVG Viewer multiple bugs

ActiveX control contains few metods used to access local and remote files, scripting in local zone, crossite scripting...

Local file detection bug found through Adobe SVG Viewer

Hyperdose Security Advisory Name: Local file detection bug found through Adobe SVG Viewer Systems Affected: v3.0 unclear if earlier versions were affected Severity: Low Author: Robert Fly - [email protected] Advisory URL: http://www.hyperdose.com/advisories/H2005-07.txt --Adobe Description--...

CVE-2005-0918

The NPSVG3.dll ActiveX control for Adobe SVG Viewer 3.02 and earlier, when running on Internet Explorer, allows remote attackers to determine the existence of arbitrary files by setting the src property to the target filename and using Javascript to determine if the web page immediately stops...

CVE-2005-0918

The issue concerns the NPSVG3.dll ActiveX control used by Adobe SVG Viewer (versions 3.02 and earlier) on Internet Explorer. The vulnerability allows remote attackers to infer the existence of arbitrary files by setting the control’s src property to a target filename and observing whether the pag...

CVE-2005-0918

The NPSVG3.dll ActiveX control for Adobe SVG Viewer 3.02 and earlier, when running on Internet Explorer, allows remote attackers to determine the existence of arbitrary files by setting the src property to the target filename and using Javascript to determine if the web page immediately stops...

Adobe SVG Viewer 3.0 - ActiveX Control SRC Information Disclosure

Adobe SVG Viewer 3.0 - ActiveX Control SRC Information Disclosure source: https://www.securityfocus.com/bid/13490/info The Adobe SVG Viewer ActiveX control is prone to an information disclosure vulnerability. Reports indicate that the Adobe SVG Viewer ActiveX control may be employed to disclose t...

Adobe SVG Viewer 3.0 - ActiveX Control SRC Information Disclosure

source: https://www.securityfocus.com/bid/13490/info The Adobe SVG Viewer ActiveX control is prone to an information disclosure vulnerability. Reports indicate that the Adobe SVG Viewer ActiveX control may be employed to disclose the existence of a target file. Information that is harvested by...

Adobe SVG Viewer Cross Domain and Zone Access (GM#004-MC)

GreyMagic Security Advisory GM004-MC ===================================== By GreyMagic Software, Israel. 07 Oct 2003. Available in HTML format at http://security.greymagic.com/adv/gm004-mc/. Topic: Adobe SVG Viewer Cross Domain and Zone Access. Discovery date: 07 Sep 2003. Affected applications:...

Adobe SVG Viewer Active Scripting Bypass (GM#002-MC)

GreyMagic Security Advisory GM002-MC ===================================== By GreyMagic Software, Israel. 07 Oct 2003. Available in HTML format at http://security.greymagic.com/adv/gm002-mc/. Topic: Adobe SVG Viewer Active Scripting Bypass. Discovery date: 19 Aug 2003. Affected applications:...

Adobe SVG Viewer 3.0 - postURLgetURL Restriction Bypass

Adobe SVG Viewer 3.0 - postURLgetURL Restriction Bypass source: https://www.securityfocus.com/bid/8785/info Adobe SVG Viewer ASV is prone to an issue in the implementation of the getURL and postURL methods. These methods are designed to prevent access to URIs in a foreign domain or local files...

[Full-Disclosure] Adobe SVG Viewer Local and Remote File Reading (GM#003-MC)

GreyMagic Security Advisory GM003-MC ===================================== By GreyMagic Software, Israel. 07 Oct 2003. Available in HTML format at http://security.greymagic.com/adv/gm003-mc/. Topic: Adobe SVG Viewer Local and Remote File Reading. Discovery date: 07 Sep 2003. Affected applications...

Adobe SVG Viewer 3.0 - 'postURL'/'getURL' Restriction Bypass

source: https://www.securityfocus.com/bid/8785/info Adobe SVG Viewer ASV is prone to an issue in the implementation of the getURL and postURL methods. These methods are designed to prevent access to URIs in a foreign domain or local files. However, by using a redirect when calling these methods, ...