Vulnerability ID 4039

Adobe Acrobat Reader up to 7.0.8 on Firefox buffer overflow

Adobe
CVSSv3 Temp ScoreCurrent Exploit Price (≈)
7.0$2k-$5k

A vulnerability was found in Adobe Acrobat Reader up to 7.0.8 on Firefox. It has been declared as critical. Affected by this vulnerability is an unknown function. The manipulation with an unknown input leads to a buffer overflow vulnerability. As an impact it is known to affect confidentiality, integrity, and availability.

The weakness was shared 10/09/2009 by Elazar Broad with iDefense. The advisory is shared for download at adobe.com. This vulnerability is known as CVE-2007-0045. The attack can be launched remotely. The exploitation doesn't need any form of authentication. The technical details are unknown and an exploit is not publicly available.

We expect the 0-day to have been worth approximately $25k-$50k. The vulnerability scanner Nessus provides a plugin with the ID 42318 (openSUSE 10 Security Update : acroread (acroread-6588)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family SuSE Local Security Checks and relying on port 0.

Upgrading eliminates this vulnerability.

The vulnerability is also documented in the databases at SecurityFocus (BID 21858) and Secunia (SA36983). See 2793, 34227, 34230 and 4035 for similar entries.

CVSSv3

Base Score: 7.3 [?]
Temp Score: 7.0 [?]
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:X [?]
Reliability: High

CVSSv2

Base Score: 6.8 (CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P) [?]
Temp Score: 5.9 (CVSS2#E:ND/RL:OF/RC:ND) [?]
Reliability: High

AVACAuCIA
LHMNNN
AMSPPP
NLNCCC
VectorComplexityAuthenticationConfidentialityIntegrityAvailability
LocalHighMultipleNoneNoneNone
AdjacentMediumSinglePartialPartialPartial
NetworkLowNoneCompleteCompleteComplete

CPE

Exploiting

Class: Buffer overflow (CWE-79)
Local: No
Remote: Yes

Availability: No

Current Price Estimation: $25k-$50k (0-day) / $2k-$5k (Today)

0-Day$0-$1k$1k-$2k$2k-$5k$5k-$10k$10k-$25k$25k-$50k$50k-$100k$100k-$500k
Today$0-$1k$1k-$2k$2k-$5k$5k-$10k$10k-$25k$25k-$50k$50k-$100k$100k-$500k


Nessus ID: 42318
Nessus Name: openSUSE 10 Security Update : acroread (acroread-6588)
Nessus File: adobe_acrobat_709.nasl
Nessus Family: SuSE Local Security Checks
Nessus Port: 0
OpenVAS ID: 58468
OpenVAS Name: Debian Security Advisory DSA 1336-1 (mozilla-firefox)
OpenVAS File: deb_1336_1.nasl
OpenVAS Family: Debian Local Security Checks

Countermeasures

Recommended: Upgrade
Status: Official fix

Timeline

01/03/2007 NVD disclosed
10/09/2009 +1010 days Advisory disclosed
10/19/2009 +10 days VulDB entry created
10/30/2009 +11 days Nessus plugin released
04/20/2016 +2364 days VulDB entry updated

Sources

Advisory: adobe.com
Researcher: Elazar Broad
Organization: iDefense

CVE: CVE-2007-0045 (mitre.org) (nvd.nist.org) (cvedetails.com)

SecurityFocus: 21858
Secunia: 36983 - Adobe Reader/Acrobat Multiple Vulnerabilities, Extremely Critical

See also: 2793, 34227, 34230, 4035, 4036, 4037, 4038, 4040, 4041, 4042, 4043

Entry

Created: 10/19/2009
Updated: 04/20/2016
Entry: 85.9% complete