PT-2004-1722 · Adobe · Acrobat Reader
Publicado
2004-08-14
·
Atualizado
2017-07-11
·
CVE-2004-0630
CVSS v2.0
10
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Acrobat Reader versions 5.0.5 through 5.0.6
Adobe Acrobat Reader versions prior to 5.0.9
Description
The issue allows remote attackers to execute arbitrary code via shell metacharacters (backtick) in the filename of the PDF file provided to the uudecode command. This is related to the uudecoding feature in Adobe Acrobat Reader.
Recommendations
For Adobe Acrobat Reader versions 5.0.5 and 5.0.6, update to a version later than 5.0.9.
For Adobe Acrobat Reader versions prior to 5.0.9, update to version 5.0.9 or later.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Acrobat Reader