CVE-2005-0492 — Improper Input Validation in Adobe Acrobat Reader

CWE-20 — Improper Input Validation2 documents2 sources

Severity

2.6LOWNVD

EPSS

1.8%

top 17.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Acrobat Reader

Timeline

PublishedMay 2

Latest updateMay 1

Description

Adobe Acrobat Reader 6.0.3 and 7.0.0 allows remote attackers to cause a denial of service (application crash) via a PDF file that contains a negative Count value in the root page node.

CVSS vector

AV:N/AC:H/C:N/I:N/A:PExploitability: 4.9 | Impact: 2.9

Affected Packages1 packages

▶NVDadobe/acrobat_reader6.0.3, 7.0+1

Patches

Patch: www.adobe.com ↗Patch: www.adobe.com ↗

🔴Vulnerability Details

GHSA

GHSA-634j-p4v9-j6fm: Adobe Acrobat Reader 6↗2022-05-01

▶