← voltar
CVE-2007-0048

CVE-2007-0048

EPSS 31.5%
Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, when used with Internet Explorer, Google Chrome, or Opera, allows remote attackers to cause a denial of service (memory consumption) via a long sequence of # (hash) characters appended to a PDF URL, related to a "cross-site scripting issue."
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://events.ccc.de/congress/2006/Fahrplan/attachments/1158-Subverting_Ajax.pdfhttp://googlechromereleases.blogspot.com/2009/01/stable-beta-update-yahoo-mail-and.htmlhttp://lists.suse.com/archive/suse-security-announce/2007-Jan/0012.htmlhttp://osvdb.org/31596http://secunia.com/advisories/23812http://secunia.com/advisories/23882http://secunia.com/advisories/33754http://security.gentoo.org/glsa/glsa-200701-16.xmlhttp://securityreason.com/securityalert/2090http://securitytracker.com/id?1017469http://securitytracker.com/id?1023007https://exchange.xforce.ibmcloud.com/vulnerabilities/31273