CVE-2007-0047

NONECVSS 0.0

0.0

CRLF injection vulnerability in Adobe Acrobat Reader Plugin before 8.0.0, when used with the Microsoft.XMLHTTP ActiveX object in Internet Explorer, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the javascript: URI in the (1) FDF, (2) XML, or (3) XFDF AJAX request parameters.

🔗 References (12)

cve@mitrehttp://events.ccc.de/congress/2006/Fahrplan/attachments/1158-Subverting_Ajax.pdf
cve@mitrehttp://lists.suse.com/archive/suse-security-announce/2007-Jan/0012.html
cve@mitrehttp://secunia.com/advisories/23882
cve@mitrehttp://securitytracker.com/id?1017469
cve@mitrehttp://www.vupen.com/english/advisories/2007/0032
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/31291
af854a3a-2127-422b-91ae-364da2661108http://events.ccc.de/congress/2006/Fahrplan/attachments/1158-Subverting_Ajax.pdf
af854a3a-2127-422b-91ae-364da2661108http://lists.suse.com/archive/suse-security-announce/2007-Jan/0012.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/23882
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1017469
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2007/0032
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/31291

Is Your Infrastructure Affected by CVE-2007-0047?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-0047

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-0047?