CVE-2004-0631Improper Restriction of Operations within the Bounds of a Memory Buffer in Adobe Acrobat Reader

4 documents4 sources
Severity
10.0CRITICALNVD
EPSS
16.1%
top 5.19%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Adobe Acrobat Reader
Timeline
PublishedAug 18
Latest updateApr 29

Description

Buffer overflow in the uudecoding feature for Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions including those before 5.0.9, allows remote attackers to execute arbitrary code via a long filename for the PDF file that is provided to the uudecode command.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDadobe/acrobat_reader5.0, 5.0.5, 5.0.6+2

🔴Vulnerability Details

1
GHSA
GHSA-c72r-p5jr-pjvr: Buffer overflow in the uudecoding feature for Adobe Acrobat Reader 52022-04-29

📋Vendor Advisories

1
Red Hat
security flaw2004-08-12

💬Community

1
Bugzilla
CVE-2004-0631 security flaw2018-08-16
CVE-2004-0631 — Adobe Acrobat Reader vulnerability | cvebase