CVE-2004-1598Adobe Acrobat vulnerability

2 documents2 sources
Severity
5.0MEDIUMNVD
EPSS
1.7%
top 17.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Adobe AcrobatAdobe Acrobat Reader
Timeline
PublishedOct 12
Latest updateApr 29

Description

Adobe Acrobat and Acrobat Reader 6.0 allow remote attackers to read arbitrary files via a PDF file that contains an embedded Shockwave (swf) file that references files outside of the temporary directory.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDadobe/acrobat_reader6.0, 6.0.1, 6.0.2+2
NVDadobe/acrobat6.0, 6.0.1, 6.0.2+2

🔴Vulnerability Details

1
GHSA
GHSA-7v39-48jj-rjrh: Adobe Acrobat and Acrobat Reader 62022-04-29
CVE-2004-1598 — Adobe Acrobat vulnerability | cvebase