Denial of Service Vulnerability in Adobe Acrobat Reader Plugin for Multiple Browsers
CVE-2007-0048

Currently unrated

Key Information:

Vendor: Adobe
Status: Acrobat; Acrobat Reader; Acrobat 3d
Vendor: CVE Published:; 3 January 2007

Summary

The Adobe Acrobat Reader Plugin has a vulnerability that allows attackers to exploit a denial of service condition. When used with Internet Explorer, Google Chrome, or Opera, a remote attacker can cause severe memory consumption by appending a long sequence of '#' characters to a PDF URL. This issue can lead to disruptions in service, making the affected browser unable to process the PDF content properly. Users and organizations should ensure their version of the Adobe Acrobat Reader Plugin is updated to the latest version to mitigate potential risks.

References

http://www.us-cert.gov/cas/techalerts/TA09-286B.html

third-party-advisoryx_refsource_CERT

http://googlechromereleases.blogspot.com/2009/01/stable-b...

x_refsource_CONFIRM

http://events.ccc.de/congress/2006/Fahrplan/attachments/1...

x_refsource_MISC

EPSS Score

51% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 3, 2007
Vulnerability Reserved
Jan 3, 2007