CVE-2004-0629
7.5
CVSS SCORE
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Description
Buffer overflow in the ActiveX component (pdf.ocx) for Adobe Acrobat 5.0.5 and Acrobat Reader, and possibly other versions, allows remote attackers to execute arbitrary code via a URI for a PDF file with a null terminator (%00) followed by a long string.
CVSS Vector Details
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Affected Software Configurations
- a adobe acrobat 5.0 * * * * * * *
- a adobe acrobat 5.0.5 * * * * * * *
- a adobe acrobat 6.0 * * * * * * *
- a adobe acrobat 6.0.1 * * * * * * *
- a adobe acrobat 6.0.2 * * * * * * *
- a adobe acrobat_reader 5.0 * * * * * * *
- a adobe acrobat_reader 5.0.5 * * * * * * *
- a adobe acrobat_reader 5.1 * * * * * * *
- a adobe acrobat_reader 6.0 * * * * * * *
- a adobe acrobat_reader 6.0.1 * * * * * * *
Weaknesses (CWE)
- NVD-CWE-Other
References & External Links
- http://www.adobe.com/support/techdocs/330527.html
- http://www.gentoo.org/security/en/glsa/glsa-200408-14.xml
- http://www.idefense.com/application/poi/display?id=126&type=vulnerabilities
- http://www.securityfocus.com/bid/10947
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16998
- http://www.adobe.com/support/techdocs/330527.html
- http://www.gentoo.org/security/en/glsa/glsa-200408-14.xml
- http://www.idefense.com/application/poi/display?id=126&type=vulnerabilities
- http://www.securityfocus.com/bid/10947
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16998