Overview
A vulnerability exists in Adobe Acrobat that may allow an attacker to execute arbitrary code.
Description
Adobe Acrobat contains a buffer overflow in the code that converts files to PDF. If an attacker can convince a user to create a PDF using specially-crafted input, that attacker may be able to trigger the overflow. Adobe reports this vulnerability only affects Adobe Acrobat versions 6.0.4 and earlier. For more information refer to Adobe Security bulletin APSB06-09. |
Impact
An attacker may be able to execute arbitrary code or cause the instance of Adobe Acrobat to terminate. |
Solution
Upgrade |
Vendor Information
167228
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
This vulnerability was reported by Adobe.
This document was written by Ryan Giobbi.
Other Information
| CVE IDs: | CVE-2006-3453 |
| Severity Metric: | 0.08 |
| Date Public: | 2006-07-12 |
| Date First Published: | 2006-07-24 |
| Date Last Updated: | 2006-07-24 19:05 UTC |
| Document Revision: | 53 |