Back to search
CVE-2007-0047
Published: Jan 3, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
CRLF injection vulnerability in Adobe Acrobat Reader Plugin before 8.0.0, when used with the Microsoft.XMLHTTP ActiveX object in Internet Explorer, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the javascript: URI in the (1) FDF, (2) XML, or (3) XFDF AJAX request parameters.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
adobe-acrobat-xmlhttp-response-splitting(31291)
vdb-entry
x_refsource_XF
23882
third-party-advisory
x_refsource_SECUNIA
ADV-2007-0032
vdb-entry
x_refsource_VUPEN
SUSE-SA:2007:011
vendor-advisory
x_refsource_SUSE
1017469
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now