CVE-2007-0047

Name of the Vulnerable Software and Affected Versions Adobe Acrobat Reader Plugin versions prior to 8.0.0

Description A CRLF injection issue allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the javascript: URI in the (1) FDF, (2) XML, or (3) XFDF AJAX request parameters when used with the Microsoft.XMLHTTP ActiveX object in Internet Explorer.

Recommendations For Adobe Acrobat Reader Plugin versions prior to 8.0.0, update to version 8.0.0 or later to resolve the issue.