Heap-Based Buffer Overflow in Adobe PageMaker by Adobe
CVE-2007-6021

Currently unrated

Key Information:

Vendor: Adobe
Status: Pagemaker
Vendor: CVE Published:; 30 October 2008

Summary

A heap-based buffer overflow vulnerability exists in Adobe PageMaker versions 7.0.1 and 7.0.2, which could allow attackers to execute arbitrary code on a user's system. This occurs when a specially crafted .PMD file containing a misleading font structure is processed. Users opening an infected PMD file may inadvertently compromise their system since the issue necessitates user interaction to trigger the exploit.

References

http://www.vupen.com/english/advisories/2008/2955

vdb-entryx_refsource_VUPEN

http://secunia.com/advisories/27200

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/archive/1/497901/100/0/threaded

mailing-listx_refsource_BUGTRAQ

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 30, 2008
Vulnerability Reserved
Nov 19, 2007