CVE-2006-6027
published 2006-11-21CVE-2006-6027: Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long…
PriorityP265critical9.3CVSS 2.0
AVNACMAuNCCICAC
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
42.95%
98.6th percentile
Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long argument string to the LoadFile method in an AcroPDF ActiveX control.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| mozilla | firefox | — | — |
| opera | opera_browser | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor for exploitation of the AcroPDF ActiveX control's LoadFile method being called with an abnormally long string argument (6164+ bytes) from Internet Explorer, which is the confirmed attack vector. ↗
- →The vulnerable method is LoadFile with memberName 'LoadFile' and argCount of 1; alert on ActiveX instantiation of progid AcroPDFLib.AcroPDF followed by a LoadFile call with a large argument. ↗
- ·This vulnerability is Windows-specific (ActiveX); Linux versions of Adobe Reader are not affected. ↗
- ·Affected versions are Adobe Reader/Acrobat Reader 7.0 through 7.0.8 only; the attack surface is the AcroPDF ActiveX control loaded within Internet Explorer. ↗
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vulncheck9.3CRITICAL
vendor_redhat9.3CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Adobe Acrobat Reader up to 7.0.8 on Windows ActiveX AcroPDF.dll denial of service (VU#198908 / Nessus ID 23776)
vuldb·2026-04-28·CVSS 9.3
CVE-2006-6027 [CRITICAL] Adobe Acrobat Reader up to 7.0.8 on Windows ActiveX AcroPDF.dll denial of service (VU#198908 / Nessus ID 23776)
A vulnerability labeled as problematic has been found in Adobe Acrobat Reader up to 7.0.8 on Windows. The affected element is an unknown function in the library AcroPDF.dll of the component ActiveX Handler. The manipulation results in denial of service.
This vulnerability is reported as CVE-2006-6027. The attack can be launched remotely. Moreover, an exploit is present.
Disabling the affected component is suggested.
GHSA
GHSA-jcvx-wgg4-cc84: AcroPDF
ghsa_unreviewed·2022-05-01·CVSS 9.3
CVE-2007-1377 [CRITICAL] CWE-400 GHSA-jcvx-wgg4-cc84: AcroPDF
AcroPDF.DLL in Adobe Reader 8.0, when accessed from Mozilla Firefox, Netscape, or Opera, allows remote attackers to cause a denial of service (unspecified resource consumption) via a .pdf URL with an anchor identifier that begins with search= followed by many %n sequences, a different vulnerability than CVE-2006-6027 and CVE-2006-6236.
GHSA
GHSA-fgmp-qcpg-37v3: Adobe Reader (Adobe Acrobat Reader) 7
ghsa_unreviewed·2022-05-01·CVSS 9.3
CVE-2006-6236 [CRITICAL] GHSA-fgmp-qcpg-37v3: Adobe Reader (Adobe Acrobat Reader) 7
Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long argument string to the (1) src, (2) setPageMode, (3) setLayoutMode, and (4) setNamedDest methods in an AcroPDF ActiveX control, a different set of vectors than CVE-2006-6027.
GHSA
GHSA-3h8p-v7v7-3333: Adobe Reader (Adobe Acrobat Reader) 7
ghsa_unreviewed·2022-05-01
CVE-2006-6027 [HIGH] GHSA-3h8p-v7v7-3333: Adobe Reader (Adobe Acrobat Reader) 7
Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long argument string to the LoadFile method in an AcroPDF ActiveX control.
VulnCheck
Adobe Acrobat Reader AcroPDF ActiveX Vulnerability
vulncheck·2006·CVSS 9.3
CVE-2006-6027 [CRITICAL] Adobe Acrobat Reader AcroPDF ActiveX Vulnerability
Adobe Acrobat Reader AcroPDF ActiveX Vulnerability
Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long argument string to the LoadFile method in an AcroPDF ActiveX control.
Affected: Adobe Acrobat and Reader
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.virusbulletin.com/virusbulletin/2010/05/exploit-kit-explosion-part-two-vectors-attack/
Red Hat
CVE-2006-6236: Adobe Reader (Adobe Acrobat Reader) 7
vendor_redhat·CVSS 9.3
CVE-2006-6236 [CRITICAL] CVE-2006-6236: Adobe Reader (Adobe Acrobat Reader) 7
Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long argument string to the (1) src, (2) setPageMode, (3) setLayoutMode, and (4) setNamedDest methods in an AcroPDF ActiveX control, a different set of vectors than CVE-2006-6027.
Statement: Not vulnerable. This issue does not affect the Linux version of Adobe Reader.
Red Hat
CVE-2006-6027: Adobe Reader (Adobe Acrobat Reader) 7
vendor_redhat·CVSS 9.3
CVE-2006-6027 [CRITICAL] CVE-2006-6027: Adobe Reader (Adobe Acrobat Reader) 7
Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long argument string to the LoadFile method in an AcroPDF ActiveX control.
Statement: Not vulnerable. This issue did not affect Linux versions of Adobe Reader.
No detection rules found.
No writeups or analysis indexed.
http://downloads.securityfocus.com/vulnerabilities/exploits/21155-AcroPDF_DoS.htmlhttp://research.eeye.com/html/alerts/zeroday/20061128.htmlhttp://secunia.com/advisories/23138http://securitytracker.com/id?1017297http://www.adobe.com/support/security/advisories/apsa06-02.htmlhttp://www.kb.cert.org/vuls/id/198908http://www.securityfocus.com/archive/1/453579/100/0/threadedhttp://www.securityfocus.com/bid/21155http://www.vupen.com/english/advisories/2006/4751https://exchange.xforce.ibmcloud.com/vulnerabilities/30574http://downloads.securityfocus.com/vulnerabilities/exploits/21155-AcroPDF_DoS.htmlhttp://research.eeye.com/html/alerts/zeroday/20061128.htmlhttp://secunia.com/advisories/23138http://securitytracker.com/id?1017297http://www.adobe.com/support/security/advisories/apsa06-02.htmlhttp://www.kb.cert.org/vuls/id/198908http://www.securityfocus.com/archive/1/453579/100/0/threadedhttp://www.securityfocus.com/bid/21155http://www.vupen.com/english/advisories/2006/4751https://exchange.xforce.ibmcloud.com/vulnerabilities/30574
2006-11-21
Published
Exploited in the wild