CVE-2007-1377
5
CVSS SCORE
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Description
AcroPDF.DLL in Adobe Reader 8.0, when accessed from Mozilla Firefox, Netscape, or Opera, allows remote attackers to cause a denial of service (unspecified resource consumption) via a .pdf URL with an anchor identifier that begins with search= followed by many %n sequences, a different vulnerability than CVE-2006-6027 and CVE-2006-6236.
CVSS Vector Details
Attack Vector
Network
Attack Complexity
Low
Confidentiality
None
Integrity
None
Availability
P
Affected Software Configurations
- a adobe acrobat_reader 8.0 * * * * * * *
- a mozilla firefox 2.0.0.3 * * * * * * *
- a netscape navigator * * * * * * * *
- a opera opera_browser 9.2 * * * * * * *
Weaknesses (CWE)
- CWE-400
References & External Links
- http://www.securityfocus.com/bid/22856
- http://www.securityfocus.com/data/vulnerabilities/exploits/22856.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32896
- http://www.securityfocus.com/bid/22856
- http://www.securityfocus.com/data/vulnerabilities/exploits/22856.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32896