CVE-2004-0629

Published Sep 28, 2004

Last updated 7 years ago

CVSS info 7.5

Overview

Description: Buffer overflow in the ActiveX component (pdf.ocx) for Adobe Acrobat 5.0.5 and Acrobat Reader, and possibly other versions, allows remote attackers to execute arbitrary code via a URI for a PDF file with a null terminator (%00) followed by a long string.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "201F059D-33D1-4D9F-9C6F-FC8EB49E4735"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:5.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B025E795-5713-485E-8A15-EBE4451A1A46"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "183B5940-2310-4D2E-99F0-9792A801A442"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F8BB13E-2732-4F9E-A588-EA1C00893C8B"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5FCDCBF-597B-439C-8D8B-2819FC70C567"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat_reader:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F0FCA2F-FD7F-4CE5-9D45-324A7EC45105"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat_reader:5.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EF7EAA22-CED2-4379-9465-9562BACB1C20"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat_reader:5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ACF742B8-5F7A-487B-835C-756B1BB392F4"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat_reader:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0BB7C0C-B1D6-4733-BA91-022A1A7FB2E2"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat_reader:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B131DB8-4B6A-4AF2-8D5E-B5EA1AEBFB3B"
          },
          {
            "criteria": "cpe:2.3:a:adobe:acrobat_reader:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5B9351C2-16ED-4766-B417-8DB3A8766C2F"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References