Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbStefano Di PaolaEDB-ID:3084
HistoryJan 05, 2007 - 12:00 a.m.

Adobe Acrobat Reader Plugin 7.0.x - 'acroreader' Cross-Site Scripting

2007-01-0500:00:00
Stefano Di Paola
www.exploit-db.com
54

AI Score

7.4

Confidence

Low

JSON
# Stefano Di Paola
# http://www.wisec.it/

From Secunia:
Input passed to a hosted PDF file is not properly sanitised by the browser plug-in
before being returned to users. This can be exploited to execute arbitrary script code in
a user's browser session in context of an affected site.

Example:
- http://[host]/[filename].pdf#[some text]=javascript:[code]

# milw0rm.com [2007-01-05]

Related

checkpoint_advisories 2
cvelist 1
cve 1
ubuntucve 1
prion 1
nvd 1
nessus 13
redhat 2
openvas 8
kaspersky 1
gentoo 1
suse 1
securityvulns 1
checkpoint_advisories
checkpoint_advisories
Adobe Acrobat Reader Plugin Crafted URL Double Free (CVE-2007-0046)
2010-01-24 00:00:00
Update Protection against Multiple Adobe Acrobat Vulnerabilities
2007-01-21 00:00:00
cvelist
cvelist
CVE-2007-0046
2007-01-03 20:00:00
cve
cve
CVE-2007-0046
2007-01-03 21:28:00
ubuntucve
ubuntucve
CVE-2007-0046
2007-01-03 00:00:00
prion
prion
Double free
2007-01-03 21:28:00
nvd
nvd
CVE-2007-0046
2007-01-03 21:28:00
nessus
nessus
RHEL 4 : Adobe Acrobat Reader (RHSA-2007:0017)
2013-01-24 00:00:00
Solaris 10 (sparc) : 121104-11
2018-03-12 00:00:00
RHEL 3 : Adobe Acrobat Reader (RHSA-2007:0021)
2013-01-24 00:00:00
redhat
redhat
(RHSA-2007:0017) Critical: Adobe Acrobat Reader security update
2007-01-11 00:00:00
(RHSA-2007:0021) Critical: Adobe Acrobat Reader security update
2007-01-22 00:00:00
openvas
openvas
Adobe Reader Multiple Vulnerabilities (Jan 2007) - Mac OS X
2014-04-11 00:00:00
Adobe Reader Multiple Vulnerabilities (Jan 2007) - Linux
2014-04-11 00:00:00
Adobe Reader Multiple Vulnerabilities (Jan 2007) - Windows
2014-04-11 00:00:00
kaspersky
kaspersky
KLA10032 Multiple vulnerabilities in Adobe Acrobat & Reader
2007-01-09 00:00:00
gentoo
gentoo
Adobe Acrobat Reader: Multiple vulnerabilities
2007-01-22 00:00:00
suse
suse
remote code execution in acroread
2007-01-22 18:37:17
securityvulns
securityvulns
Adobe reader plugin PDF files universal crossite scripting
2007-01-04 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:3084
checkpoint_advisories2cvelist1cve1ubuntucve1prion1nvd1nessus13redhat2openvas8kaspersky1gentoo1suse1securityvulns1