CVE-2006-6236
published 2006-12-03CVE-2006-6236: Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long…
PriorityP339critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
19.46%
97.0th percentile
Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long argument string to the (1) src, (2) setPageMode, (3) setLayoutMode, and (4) setNamedDest methods in an AcroPDF ActiveX control, a different set of vectors than CVE-2006-6027.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| adobe | acrobat_reader | — | — |
| mozilla | firefox | — | — |
| opera | opera_browser | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Attack targets the AcroPDF ActiveX control; monitor for long argument strings passed to the src, setPageMode, setLayoutMode, and setNamedDest methods of this control
- ·This vulnerability only affects Windows-based Adobe Reader 7.0 through 7.0.8; the Linux version of Adobe Reader is not affected ↗
- ·Affected versions are Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 only ↗
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jcvx-wgg4-cc84: AcroPDF
ghsa_unreviewed·2022-05-01·CVSS 9.3
CVE-2007-1377 [CRITICAL] CWE-400 GHSA-jcvx-wgg4-cc84: AcroPDF
AcroPDF.DLL in Adobe Reader 8.0, when accessed from Mozilla Firefox, Netscape, or Opera, allows remote attackers to cause a denial of service (unspecified resource consumption) via a .pdf URL with an anchor identifier that begins with search= followed by many %n sequences, a different vulnerability than CVE-2006-6027 and CVE-2006-6236.
GHSA
GHSA-fgmp-qcpg-37v3: Adobe Reader (Adobe Acrobat Reader) 7
ghsa_unreviewed·2022-05-01·CVSS 9.3
CVE-2006-6236 [CRITICAL] GHSA-fgmp-qcpg-37v3: Adobe Reader (Adobe Acrobat Reader) 7
Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long argument string to the (1) src, (2) setPageMode, (3) setLayoutMode, and (4) setNamedDest methods in an AcroPDF ActiveX control, a different set of vectors than CVE-2006-6027.
Red Hat
CVE-2006-6236: Adobe Reader (Adobe Acrobat Reader) 7
vendor_redhat·CVSS 9.3
CVE-2006-6236 [CRITICAL] CVE-2006-6236: Adobe Reader (Adobe Acrobat Reader) 7
Adobe Reader (Adobe Acrobat Reader) 7.0 through 7.0.8 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long argument string to the (1) src, (2) setPageMode, (3) setLayoutMode, and (4) setNamedDest methods in an AcroPDF ActiveX control, a different set of vectors than CVE-2006-6027.
Statement: Not vulnerable. This issue does not affect the Linux version of Adobe Reader.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://research.eeye.com/html/alerts/zeroday/20061128.htmlhttp://secunia.com/advisories/23138http://www.adobe.com/support/security/advisories/apsa06-02.htmlhttp://www.kb.cert.org/vuls/id/198908http://www.securityfocus.com/archive/1/453579/100/0/threadedhttp://www.securityfocus.com/bid/21338http://www.securityfocus.com/bid/21813http://www.vupen.com/english/advisories/2006/4751https://exchange.xforce.ibmcloud.com/vulnerabilities/30574https://exchange.xforce.ibmcloud.com/vulnerabilities/31167https://www.exploit-db.com/exploits/3040http://research.eeye.com/html/alerts/zeroday/20061128.htmlhttp://secunia.com/advisories/23138http://www.adobe.com/support/security/advisories/apsa06-02.htmlhttp://www.kb.cert.org/vuls/id/198908http://www.securityfocus.com/archive/1/453579/100/0/threadedhttp://www.securityfocus.com/bid/21338http://www.securityfocus.com/bid/21813http://www.vupen.com/english/advisories/2006/4751https://exchange.xforce.ibmcloud.com/vulnerabilities/30574https://exchange.xforce.ibmcloud.com/vulnerabilities/31167https://www.exploit-db.com/exploits/3040
2006-12-03
Published