CVE-2007-1377

Adobe Acrobat Reader - Denial of Service

Title source: rule

Description

AcroPDF.DLL in Adobe Reader 8.0, when accessed from Mozilla Firefox, Netscape, or Opera, allows remote attackers to cause a denial of service (unspecified resource consumption) via a .pdf URL with an anchor identifier that begins with search= followed by many %n sequences, a different vulnerability than CVE-2006-6027 and CVE-2006-6236.

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · htmldoswindows

https://www.exploit-db.com/exploits/3430

View Code ZIP pw:eip

References (3)

[Broken Link, Exploit, Third Party Advisory, VDB Entry] http://www.securityfocus.com/data/vulnerabilities/exploits/22856.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/32896

[Broken Link, Exploit, Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/22856

Scores

EPSS 0.1721

EPSS Percentile 95.0%

Details

CWE

CWE-400

Status published

Products (4)

adobe/acrobat_reader 8.0

mozilla/firefox 2.0.0.3

netscape/navigator

opera/opera_browser 9.2

Published Mar 10, 2007

Tracked Since Feb 18, 2026