Revision Date: | 2010-09-06 | Version: | 5 | Title: | Adobe Acrobat Reader Plugin before 8.0.0 for the Firefox, Internet Explorer, and Opera web browsers allows remote attackers to force the browser to make unauthorized requests to other web sites via a URL in the (1) FDF, (2) xml, and (3) xfdf AJAX request parameters, following the # (hash) character, aka "Universal CSRF and session riding." | Description: | Adobe Acrobat Reader Plugin before 8.0.0 for the Firefox, Internet Explorer, and Opera web browsers allows remote attackers to force the browser to make unauthorized requests to other web sites via a URL in the (1) FDF, (2) xml, and (3) xfdf AJAX request parameters, following the # (hash) character, aka "Universal CSRF and session riding." | Family: | unix | Class: | vulnerability | Status: | ACCEPTED | Reference(s): | CVE-2007-0044
| Platform(s): | Red Hat Enterprise Linux Extras 3 Red Hat Enterprise Linux Extras 4 Red Hat Enterprise Linux Extras 5
| Product(s): | | Definition Synopsis | AND redhat-release is version 3
acroread-plugin is earlier than 0:8.1.2-1.el3.6
OR acroread is earlier than 0:8.1.2-1.el3.6
OR
redhat-release is version 4
acroread-plugin is earlier than 0:8.1.2-1.el4.2
OR acroread is earlier than 0:8.1.2-1.el4.2
OR
redhat-release is version 5
acroread-plugin is earlier than 0:8.1.2-1.el5.3
OR acroread is earlier than 0:8.1.2-1.el5.3
|
|