CVE Vulnerability

CVE-2007-1377

AcroPDF.DLL in Adobe Reader 8.0, when accessed from Mozilla Firefox, Netscape, or Opera, allows remote attackers to cause a denial of service (unspecified resource consumption) via a .pdf URL with an anchor identifier that begins with search= followed by many %n sequences, a different vulnerability than CVE-2006-6027 and CVE-2006-6236.

5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

Scope

References
Link Resource
http://www.securityfocus.com/data/vulnerabilities/exploits/22856.html Broken Link Exploit
http://www.securityfocus.com/bid/22856 Broken Link Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/32896 Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:a:netscape:navigator:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:8.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:2.0.0.3:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:9.2:*:*:*:*:*:*:*
Information

Published : 2007-03-10 12:19

Updated : 2022-02-26 04:04

NVD link : CVE-2007-1377

Mitre link : CVE-2007-1377

Products Affected
No products.
CWE
CWE-400