Fiche créée le 2006-07-12 10:17:53, dernière mise à jour le 2008-03-02 23:57:30
A local overflow exists in Acrobat Reader. Acrobat Reader fails to handle malicious content inserted in a PDF file resulting in a buffer overflow. If a user opens specially crafted file, an attacker can cause execute arbitrary
commands resulting in a loss of integrity.
|
| |
| Adobe Systems Incorporated 5.0 Affected |
| Adobe Systems Incorporated 5.0.5 Affected |
| Adobe Systems Incorporated 6.0 Affected |
| Adobe Systems Incorporated 6.0.1 Affected |
| Adobe Systems Incorporated 6.0.2 Affected |
| Adobe Systems Incorporated 6.0.3 Affected |
| Adobe Systems Incorporated 6.0.4 Affected |
| Adobe Systems Incorporated 6.0.5 Possible Affected |
| |
Attack Type : Input Manipulation
XSS, SQL injection, file retrieval, directory traversal, overflows, URL encoding. |
Découvert le 2006-07-11 10:18:56
|
| Disclosure : OSVDB Verified |
Confirmé le 2006-07-11 10:18:56
|
Exploit : Exploit Unknown
Unsure of exploit status. |
Exploit découvert le 1970-01-01 07:00:00
|
Impact : Loss of Availability
Assurance of timely and reliable access to data.
Examples: any DoS attack of any kind, unauthorized file deletion, etc. anything that can cause the availability of a service or information to be impacted. |
| |
Impact : Loss of Integrity
Assurance that data is unaltered by unauthorized persons.
Examples: XSS, arbitrary command execution, most overflows, most format strings, SQL injection, unauthorized file modification/deletion/creation, remote file inclusion, etc. |
| |
Location : Local Access Required
Requires a local account, shell access, etc. Any vulnerability that doesn't require network layer to exploit. |
| |
| |
| External refs : |
| OSVDB 27156 |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
