FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

acroread -- XML External Entity vulnerability

Affected packages
7.0.0 <= acroread7 < 7.0.1
7.0.0 <= ja-acroread < 7.0.1

Details

VuXML ID 02bc9b7c-e019-11d9-a8bd-000cf18bbe54
Discovery 2005-06-15
Entry 2005-06-18
Modified 2005-08-28

Sverre H. Huseby discovered a vulnerability in Adobe Acrobat and Adobe Reader. Under certain circumstances, using XML scripts it is possible to discover the existence of local files.

References

CVE Name CVE-2005-1306
URL http://shh.thathost.com/secadv/adobexxe/
URL http://support.adobe.co.jp/faq/faq/qadoc.sv?226360+002+3
URL http://www.adobe.com/support/techdocs/331710.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.