Vulnerability Description
Unspecified vulnerability in Adobe Acrobat and Reader 8.1 on Windows allows remote attackers to execute arbitrary code via a crafted PDF file, related to the mailto: option and Internet Explorer 7 on Windows XP. NOTE: this information is based upon a vague pre-advisory by a reliable researcher.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Acrobat | 8.1 |
| Adobe | Acrobat Reader | 8.1 |
Related Weaknesses (CWE)
References
- http://www.adobe.com/support/security/advisories/apsa07-04.html
- http://www.gnucitizen.org/blog/0day-pdf-pwns-windows
- http://www.securityfocus.com/archive/1/480080/100/0/threaded
- http://www.securityfocus.com/bid/25748
- http://www.securitytracker.com/id?1018723
- http://www.us-cert.gov/cas/techalerts/TA07-297B.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2007/3392Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36722
- http://www.adobe.com/support/security/advisories/apsa07-04.html
- http://www.gnucitizen.org/blog/0day-pdf-pwns-windows
- http://www.securityfocus.com/archive/1/480080/100/0/threaded
- http://www.securityfocus.com/bid/25748
- http://www.securitytracker.com/id?1018723
- http://www.us-cert.gov/cas/techalerts/TA07-297B.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2007/3392Vendor Advisory
FAQ
What is CVE-2007-5020?
CVE-2007-5020 is a vulnerability with a CVSS score of 9.3 (HIGH). Unspecified vulnerability in Adobe Acrobat and Reader 8.1 on Windows allows remote attackers to execute arbitrary code via a crafted PDF file, related to the mailto: option and Internet Explorer 7 on ...
How severe is CVE-2007-5020?
CVE-2007-5020 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5020?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Acrobat, Adobe Acrobat Reader.