CVE-2007-0047 in Acrobat Reader Plugininfo

Summary

CRLF injection vulnerability in Adobe Acrobat Reader Plugin before 8.0.0, when used with the Microsoft.XMLHTTP ActiveX object in Internet Explorer, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the javascript: URI in the (1) FDF, (2) XML, or (3) XFDF AJAX request parameters.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Disclosure

01/03/2007

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-113 (Unconfirmed)

CVSS

7.3

EPSS

0.05591

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0047
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0047
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0047/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!