Vulnerability Description
Buffer overflow in the ActiveX component (pdf.ocx) for Adobe Acrobat 5.0.5 and Acrobat Reader, and possibly other versions, allows remote attackers to execute arbitrary code via a URI for a PDF file with a null terminator (%00) followed by a long string.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Acrobat | 5.0 |
| Adobe | Acrobat Reader | 5.0 |
References
- http://www.adobe.com/support/techdocs/330527.html
- http://www.gentoo.org/security/en/glsa/glsa-200408-14.xmlPatchVendor Advisory
- http://www.idefense.com/application/poi/display?id=126&type=vulnerabilities
- http://www.securityfocus.com/bid/10947PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16998
- http://www.adobe.com/support/techdocs/330527.html
- http://www.gentoo.org/security/en/glsa/glsa-200408-14.xmlPatchVendor Advisory
- http://www.idefense.com/application/poi/display?id=126&type=vulnerabilities
- http://www.securityfocus.com/bid/10947PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16998
FAQ
What is CVE-2004-0629?
CVE-2004-0629 is a vulnerability with a CVSS score of 7.5 (HIGH). Buffer overflow in the ActiveX component (pdf.ocx) for Adobe Acrobat 5.0.5 and Acrobat Reader, and possibly other versions, allows remote attackers to execute arbitrary code via a URI for a PDF file w...
How severe is CVE-2004-0629?
CVE-2004-0629 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0629?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Acrobat, Adobe Acrobat Reader.