Vulnerability Details CVE-2005-0035
The Acrobat web control in Adobe Acrobat and Acrobat Reader 7.0 and earlier, when used with Internet Explorer, allows remote attackers to determine the existence of arbitrary files via the LoadFile ActiveX method.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.038
EPSS Ranking 87.7%
CVSS Severity
CVSS v2 Score 5.1
References
- http://secunia.com/advisories/14813
- http://www.adobe.com/support/techdocs/331465.html
- http://www.hyperdose.com/advisories/H2005-06.txt
- http://www.niscc.gov.uk/niscc/docs/re-20050401-00264.pdf
- http://www.osvdb.org/15242
- http://www.securityfocus.com/bid/12989
- http://www.vupen.com/english/advisories/2005/0310
- http://secunia.com/advisories/14813
- http://www.adobe.com/support/techdocs/331465.html
- http://www.hyperdose.com/advisories/H2005-06.txt
- http://www.niscc.gov.uk/niscc/docs/re-20050401-00264.pdf
- http://www.osvdb.org/15242
- http://www.securityfocus.com/bid/12989
- http://www.vupen.com/english/advisories/2005/0310
Products affected by CVE-2005-0035
-
cpe:2.3:a:adobe:acrobat_reader:4.5
-
cpe:2.3:a:adobe:acrobat_reader:5.0
-
cpe:2.3:a:adobe:acrobat_reader:5.0.5
-
cpe:2.3:a:adobe:acrobat_reader:5.1
-
cpe:2.3:a:adobe:acrobat_reader:6.0
-
cpe:2.3:a:adobe:acrobat_reader:6.0.1
-
cpe:2.3:a:adobe:acrobat_reader:6.0.2
-
cpe:2.3:a:adobe:acrobat_reader:6.0.3
-
cpe:2.3:a:adobe:acrobat_reader:7.0