5980 matches found
CVE-2004-1152
CVE-2004-1152 : A buffer overflow in the mailListIsPdf function of Adobe Acrobat Reader 5.09 for UNIX allows remote code execution via a crafted PDF in an email attachment. The issue arises from unsafe string handling (strcat) into a fixed buffer while analyzing email messages, enabling arbitrary...
CVE-2004-1152
Buffer overflow in the mailListIsPdf function in Adobe Acrobat Reader 5.09 for Unix allows remote attackers to execute arbitrary code via an e-mail message with a crafted PDF attachment...
CVE-2004-1153
Format string vulnerability in Adobe Acrobat Reader 6.0.0 through 6.0.2 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via an .ETD document containing format string specifiers in 1 title or 2 baseurl fields...
CVE-2004-1153
Adobe Acrobat Reader (Windows/macOS/Linux) versions 6.0.0–6.0.2 are affected by a DoS/vulnerability in the ETD file parser caused by a format string flaw, which can crash the app and potentially enable code execution. The OpenVAS entries corroborate a DoS impact but do not provide a patch or miti...
GLSA-200412-12 : Adobe Acrobat Reader: Buffer overflow vulnerability
The remote host is affected by the vulnerability described in GLSA-200412-12 Adobe Acrobat Reader: Buffer overflow vulnerability A buffer overflow has been discovered in the email processing of Adobe Acrobat Reader. This flaw exists in the mailListIsPdf function, which checks if the input file is...
Adobe Acrobat Reader: Buffer overflow vulnerability
Background Adobe Acrobat Reader is a utility used to view PDF files. Description A buffer overflow has been discovered in the email processing of Adobe Acrobat Reader. This flaw exists in the mailListIsPdf function, which checks if the input file is an email message containing a PDF file. Impact ...
iDEFENSE Security Advisory 12.14.04 - Adobe Acrobat Reader 5.0.9 mailListIsPdf() Buffer Overflow Vulnerability
Adobe Acrobat Reader 5.0.9 mailListIsPdf Buffer Overflow Vulnerability iDEFENSE Security Advisory 12.14.04 www.idefense.com/application/poi/display?id=161&type=vulnerabilities December 14, 2004 I. BACKGROUND Adobe Acrobat Reader is a program for viewing Portable Document Format PDF documents. Mor...
acroread5 -- mailListIsPdf() buffer overflow vulnerability
An iDEFENSE Security Advisory reports: Remote exploitation of a buffer overflow in version 5.09 of Adobe Acrobat Reader for Unix could allow for execution of arbitrary code. The vulnerability specifically exists in a the function mailListIsPdf. This function checks if the input file is an email...
CVE-2004-0194
CVE-2004-0194 affects Adobe Acrobat Reader 5.1. It is a stack-based buffer overflow in the OutputDebugString function triggered by a PDF containing XFDF data, enabling remote code execution. The vulnerability has a CVSS base score of 7.5 (Network, Low attack complexity, no authentication required...
CVE-2004-0194
Stack-based buffer overflow in the OutputDebugString function for Adobe Acrobat Reader 5.1 allows remote attackers to execute arbitrary code via a PDF document with XML Forms Data Format XFDF data...
Important: Red Hat Security Advisory: acroread security update
An updated Adobe Acrobat Reader package that fixes multiple security issues is now available. The Adobe Acrobat Reader browser allows for the viewing, distributing, and printing of documents in portable document format PDF. iDEFENSE has reported that Adobe Acrobat Reader 5.0 contains a buffer...
RHEL 3 : acroread (RHSA-2004:432)
An updated Adobe Acrobat Reader package that fixes multiple security issues is now available. The Adobe Acrobat Reader browser allows for the viewing, distributing, and printing of documents in portable document format PDF. iDEFENSE has reported that Adobe Acrobat Reader 5.0 contains a buffer...
CVE-2004-0631
Buffer overflow in the uudecoding feature for Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions including those before 5.0.9, allows remote attackers to execute arbitrary code via a long filename for the PDF file that is provided to the uudecode command...
CVE-2004-0630
The uudecoding feature in Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions including those before 5.0.9, allows remote attackers to execute arbitrary code via shell metacharacters "" or backtick in the filename of the PDF file that is provided to the uudecode...
[Full-Disclosure] iDEFENSE Security Advisory 08.12.04a: Adobe Acrobat Reader (Unix) Shell Metacharacter Code Execution Vulnerability
Adobe Acrobat Reader Unix Shell Metacharacter Code Execution Vulnerability iDEFENSE Security Advisory 08.12.04a www.idefense.com/application/poi/display?id=124&type=vulnerabilities August 12, 2004 I. BACKGROUND Adobe Acrobat Reader is a program for viewing Portable Document Format PDF documents...
Multiple Adobe Acrobat Reader bugs
Shell metacharacters problem, uudecode buffer overflow...
CVE-2004-0631
CVE-2004-0631 is a buffer-overflow vulnerability in Adobe Acrobat Reader 5.0.5/5.0.6 on Unix/Linux (and potentially earlier than 5.0.9) related to the uudecode filename handling. A long UUEncoded filename could allow remote code execution. Multiple advisories (Red Hat RHSA-2004:432, Gentoo GLSA-2...
CVE-2004-0630
The uudecoding feature in Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions including those before 5.0.9, allows remote attackers to execute arbitrary code via shell metacharacters "" or backtick in the filename of the PDF file that is provided to the uudecode...
CVE-2004-0631
Buffer overflow in the uudecoding feature for Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions including those before 5.0.9, allows remote attackers to execute arbitrary code via a long filename for the PDF file that is provided to the uudecode command...
CVE-2004-0630
CVE-2004-0630 affects Adobe Acrobat Reader on Unix/Linux (orig. 5.0.5/5.0.6, possibly earlier than 5.0.9). The vulnerability lies in the uudecode filename handling, where a filename containing shell metacharacters (backtick `) can allow remote code execution via the uudecode command. Multiple ven...