Vulnerabilities > CVE-2004-1153 - Denial-Of-Service vulnerability in Adobe Acrobat Reader 6.0/6.0.2/8.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Format string vulnerability in Adobe Acrobat Reader 6.0.0 through 6.0.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an .ETD document containing format string specifiers in (1) title or (2) baseurl fields.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
Oval
accepted | 2014-10-06T04:04:11.161-04:00 | ||||||||||||
class | vulnerability | ||||||||||||
contributors |
| ||||||||||||
description | Format string vulnerability in Adobe Acrobat Reader 6.0.0 through 6.0.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an .ETD document containing format string specifiers in (1) title or (2) baseurl fields. | ||||||||||||
family | windows | ||||||||||||
id | oval:org.mitre.oval:def:2919 | ||||||||||||
status | accepted | ||||||||||||
submitted | 2005-04-26T12:00:00.000-04:00 | ||||||||||||
title | Adobe Acrobat Reader .ETD Document Code Execution Vulnerability | ||||||||||||
version | 5 |