HTTP: Adobe Acrobat Reader Plugin URL Double Free
This signature detects attempts to exploit a known vulnerability against Adobe Acrobat Reader Plugin. The vulnerability is caused due to a memory corruption that happens inside the Plugin for multiple browsers upon processing a URL for a PDF file. A remote unauthenticated attacker can leverage the vulnerability to achieve cross-site scripting attacks.
Extended Description
Adobe Reader Plugin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the visited site. This may help the attacker steal cookie-based authentication credentials and launch other attacks. This issue affects Adobe Reader versions 6 and 7 for Mozilla Firefox, Opera, and Microsoft Internet Explorer. Other versions for other browsers may also be affected.
Affected Products
Mozilla firefox
Short Name
HTTP:STC:ADOBE:ACROBAT-URL-DF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Acrobat Adobe CVE-2007-0045 CVE-2007-0046 Double Free Plugin Reader URL bid:21858
Release Date
01/08/2007
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3728
False Positive
Unknown
Vendors
Red_hat
Adobe
Gentoo
Sun
Mozilla
Turbolinux
Avaya
Debian
Opera_software
Suse
Microsoft
CVSS Score
7.5
4.3