CVE-2007-0048
N/A
N/A
Summary
Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, when used with Internet Explorer, Google Chrome, or Opera, allows remote attackers to cause a denial of service (memory consumption) via a long sequence of # (hash) characters appended to a PDF URL, related to a "cross-site scripting issue."
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.us-cert.gov/cas/techalerts/TA09-286B.html
- http://googlechromereleases.blogspot.com/2009/01/stable-beta-update-yahoo-mail-and.html
- http://events.ccc.de/congress/2006/Fahrplan/attachments/1158-Subverting_Ajax.pdf
- http://securitytracker.com/id?1023007
- http://secunia.com/advisories/23882
- http://www.securityfocus.com/archive/1/455801/100/0/threaded
- http://www.vupen.com/english/advisories/2007/0032
- http://www.adobe.com/support/security/bulletins/apsb09-15.html
- http://securityreason.com/securityalert/2090
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6348
- http://lists.suse.com/archive/suse-security-announce/2007-Jan/0012.html
- http://secunia.com/advisories/33754
- http://secunia.com/advisories/23812
- http://securitytracker.com/id?1017469
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31273
- http://www.adobe.com/support/security/bulletins/apsb07-01.html
- http://www.vupen.com/english/advisories/2009/2898
- http://security.gentoo.org/glsa/glsa-200701-16.xml
- http://osvdb.org/31596
- http://www.wisec.it/vulns.php?page=9
References
- http://www.us-cert.gov/cas/techalerts/TA09-286B.html
- http://googlechromereleases.blogspot.com/2009/01/stable-beta-update-yahoo-mail-and.html
- http://events.ccc.de/congress/2006/Fahrplan/attachments/1158-Subverting_Ajax.pdf
- http://securitytracker.com/id?1023007
- http://secunia.com/advisories/23882
- http://www.securityfocus.com/archive/1/455801/100/0/threaded
- http://www.vupen.com/english/advisories/2007/0032
- http://www.adobe.com/support/security/bulletins/apsb09-15.html
- http://securityreason.com/securityalert/2090
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6348
- http://lists.suse.com/archive/suse-security-announce/2007-Jan/0012.html
- http://secunia.com/advisories/33754
- http://secunia.com/advisories/23812
- http://securitytracker.com/id?1017469
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31273
- http://www.adobe.com/support/security/bulletins/apsb07-01.html
- http://www.vupen.com/english/advisories/2009/2898
- http://security.gentoo.org/glsa/glsa-200701-16.xml
- http://osvdb.org/31596
- http://www.wisec.it/vulns.php?page=9
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.