CVE-2005-1841

The control for Adobe Reader 5.0.9 and 5.0.10 on Linux, Solaris, HP-UX, and AIX creates temporary files with the permissions as specified in a user's umask, which could allow local users to read PDF documents of that user if the umask allows it...

CVE-2005-1841

Adobe Reader information-disclosure vulnerability CVE-2005-1841 affects Adobe Reader 5.0.9 and 5.0.10 on Linux, Solaris, HP-UX, and AIX. The issue arises from how temporary files are created in /tmp using the user’s umask, which can allow local users to read the owner’s PDF documents. Connected a...

CVE-2005-1625

Stack-based buffer overflow in the UnixAppOpenFilePerform function in Adobe Reader 5.0.9 and 5.0.10 for Unix allows remote attackers to execute arbitrary code via a PDF document with a long /Filespec tag...

CVE-2005-1625

Stack-based buffer overflow in the UnixAppOpenFilePerform function in Adobe Reader 5.0.9 and 5.0.10 for Unix allows remote attackers to execute arbitrary code via a PDF document with a long /Filespec tag...

CVE-2005-1625

CVE-2005-1625 affects Adobe Reader on Unix, specifically versions 5.0.9 and 5.0.10. A stack-based buffer overflow in the UnixAppOpenFilePerform function can be triggered by a crafted PDF with a long /Filespec tag, enabling remote code execution. The provided connected sources confirm the vulnerab...

acroread -- buffer overflow vulnerability

An Adobe Security Advisory reports: A vulnerability within Adobe Reader has been identified. Under certain circumstances, remote exploitation of a buffer overflow in Adobe Reader could allow an attacker to execute arbitrary code. If exploited, it could allow the execution of arbitrary code under...

[SA14457] Adobe Reader for Linux Insecure Temporary File Creation

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

Adobe Reader for Linux symbolic links problem

Symbolic links problem on temporary files creation...

acroread -- insecure temporary file creation

Secunia Research reports: Secunia has discovered a security issue in Adobe Reader for Linux, which can be exploited by malicious, local users to gain knowledge of sensitive information. The problem is caused due to temporary files being created with permissions based on a user's umask in the "/tm...

Adobe Reader 7: XML External Entity (XXE) Attack

XML External Entity XXE Attack Possible in Adobe Reader 7 ----------------------------------------------------------- SHH 7, 2005-06-16 Description ----------- Recent versions of Adobe Reader previously known as Acrobat Reader are vulnerable to XML External Entity XXE Attacks. By including a...

CVE-2005-1306

The Adobe Reader control in Adobe Reader and Acrobat 7.0 and 7.0.1 allows remote attackers to determine the existence of files via Javascript containing XML script, aka the "XML External Entity vulnerability."...

CVE-2005-1306

The Adobe Reader control in Adobe Reader and Acrobat 7.0 and 7.0.1 allows remote attackers to determine the existence of files via Javascript containing XML script, aka the "XML External Entity vulnerability."...

PT-2005-2309 · Adobe · Reader +1

Name of the Vulnerable Software and Affected Versions: Adobe Reader and Acrobat versions 7.0 through 7.0.1 Description: The issue allows remote attackers to determine the existence of files via Javascript containing XML script. This is related to the XML External Entity vulnerability...

Adobe Acrobat 7.0 Adobe Reader 7.0 - File Existence File Disclosure

Adobe Acrobat 7.0 Adobe Reader 7.0 - File Existence File Disclosure source: https://www.securityfocus.com/bid/13962/info Adobe Acrobat and Adobe Reader may allow remote attackers to determine the existence of files on a vulnerable computer. This issue can be used to disclose data from a target fi...

acroread -- XML External Entity vulnerability

Sverre H. Huseby discovered a vulnerability in Adobe Acrobat and Adobe Reader. Under certain circumstances, using XML scripts it is possible to discover the existence of local files...

Local file detection found through Adobe Reader ActiveX control

Hyperdose Security Advisory Name: Local file detection found through Adobe Reader ActiveX control Systems Affected: Adobe Reader 7.0 and earlier Severity: Low Author: Robert Fly - [email protected] Advisory URL: http://www.hyperdose.com/advisories/H2005-06.txt --Adobe Description-- From...

[SA14813] Adobe Reader Local Files Detection Weakness

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Adobe Reader Local Files Detection Weakness SECUNIA...

Adobe acrobat / Adobe Reader 6 can read local files

Adobe acrobat / Adobe Reader 6 can read local files Description Acrobat/ Acrobat reader is software for viewing and printing Adobe Portable Document Format PDF files. Adobe PDF files can be viewed on most major operating systems. Version 6 of this program has an issue with the way it handles...

Adobe Acrobat / Acrobat Reader local file access

SWF files embedded to document may access local files...

CVE-2004-0629

CVE-2004-0629 concerns a buffer overflow in the ActiveX component pdf.ocx used by Adobe Acrobat 5.0.5 and Acrobat Reader (and possibly other versions). The flaw allows remote code execution when processing a PDF URI that ends with a null terminator (%00) followed by a long string, exploiting the ...