CVE-2005-0035
5.1
CVSS SCORE
Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Description
The Acrobat web control in Adobe Acrobat and Acrobat Reader 7.0 and earlier, when used with Internet Explorer, allows remote attackers to determine the existence of arbitrary files via the LoadFile ActiveX method.
CVSS Vector Details
Attack Vector
Network
Attack Complexity
High
Confidentiality
P
Integrity
P
Availability
P
Affected Software Configurations
- a adobe acrobat_reader 4.5 * * * * * * *
- a adobe acrobat_reader 5.0 * * * * * * *
- a adobe acrobat_reader 5.0.5 * * * * * * *
- a adobe acrobat_reader 5.1 * * * * * * *
- a adobe acrobat_reader 6.0 * * * * * * *
- a adobe acrobat_reader 6.0.1 * * * * * * *
- a adobe acrobat_reader 6.0.2 * * * * * * *
- a adobe acrobat_reader 6.0.3 * * * * * * *
- a adobe acrobat_reader 7.0 * * * * * * *
Weaknesses (CWE)
- NVD-CWE-Other
References & External Links
- http://secunia.com/advisories/14813
- http://www.adobe.com/support/techdocs/331465.html
- http://www.hyperdose.com/advisories/H2005-06.txt
- http://www.niscc.gov.uk/niscc/docs/re-20050401-00264.pdf
- http://www.osvdb.org/15242
- http://www.securityfocus.com/bid/12989
- http://www.vupen.com/english/advisories/2005/0310
- http://secunia.com/advisories/14813
- http://www.adobe.com/support/techdocs/331465.html
- http://www.hyperdose.com/advisories/H2005-06.txt
- http://www.niscc.gov.uk/niscc/docs/re-20050401-00264.pdf
- http://www.osvdb.org/15242
- http://www.securityfocus.com/bid/12989
- http://www.vupen.com/english/advisories/2005/0310