5 results (0.012 seconds)

CVSS: 9.3EPSS: 24%CPEs: 2EXPL: 0

Stack-based buffer overflow in AldFs32.dll in Adobe PageMaker 7.0.1 and 7.0.2 allows user-assisted remote attackers to execute arbitrary code via a malformed .PMD file, related to "Key Strings," a different vulnerability than CVE-2007-5169 and CVE-2007-5394. Desbordamiento de búfer basado en pila en AldFs32.dll en Adobe PageMaker 7.0.1 y 7.0.2 permite a atacantes remotos ayudados por el usuario ejecutar código de su elección mediante un archivo .PMD malformado, relacionado con "Key Strings (Cadenas Clave)", una vulnerabilidad distinta a CVE-2007-5169 y CVE-2007-5394. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=749 http://www.adobe.com/support/security/advisories/apsa08-10.html http://www.securityfocus.com/archive/1/497996/100/0/threaded http://www.securityfocus.com/bid/31999 http://www.securitytracker.com/id?1021123 http://www.vupen.com/english/advisories/2008/2955 https://exchange.xforce.ibmcloud.com/vulnerabilities/46233 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 9.3EPSS: 19%CPEs: 2EXPL: 0

Stack-based buffer overflow in AldFs32.dll in Adobe PageMaker 7.0.1 and 7.0.2 allows user-assisted remote attackers to execute arbitrary code via a .PMD file with a crafted font structure, a different vulnerability than CVE-2007-5169 and CVE-2007-6432. Un desbordamiento de búfer en la región stack de la memoria en la biblioteca AldFs32.dll en Adobe PageMaker versiones 7.0.1 y 7.0.2, permite a los atacantes remotos asistidos por el usuario ejecutar código arbitrario por medio de un archivo .PMD con una estructura de fuente diseñada, una vulnerabilidad diferente de CVE-2007-5169 y CVE-2007-6432. • http://secunia.com/advisories/27200 http://secunia.com/secunia_research/2007-80 http://www.adobe.com/support/security/advisories/apsa08-10.html http://www.securityfocus.com/archive/1/497901/100/0/threaded http://www.securityfocus.com/bid/31975 http://www.securitytracker.com/id?1021119 http://www.vupen.com/english/advisories/2008/2955 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 9.3EPSS: 19%CPEs: 2EXPL: 0

Heap-based buffer overflow in Adobe PageMaker 7.0.1 and 7.0.2 allows user-assisted remote attackers to execute arbitrary code via a .PMD file with a crafted font structure. Un desbordamiento de búfer en la región heap de la memoria en Adobe PageMaker versiones 7.0.1 y 7.0.2, permite a los atacantes remotos asistidos por el usuario ejecutar código arbitrario por medio de un archivo .PMD con una estructura de fuente diseñada. • http://secunia.com/advisories/27200 http://secunia.com/secunia_research/2007-80 http://www.adobe.com/support/security/advisories/apsa08-10.html http://www.securityfocus.com/archive/1/497901/100/0/threaded http://www.securityfocus.com/bid/31975 http://www.securitytracker.com/id?1021119 http://www.vupen.com/english/advisories/2008/2955 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 9.3EPSS: 16%CPEs: 2EXPL: 0

Stack-based buffer overflow in MAIPM6.dll in Adobe PageMaker 7.0.1 and 7.0.2 on Windows allows user-assisted remote attackers to execute arbitrary code via a long font name in a .PMD file. Desbordamiento de búfer basado en pila en MAIPM6.dll en Adobe PageMaker 7.0.1 y 7.0.2 sobre Windows permite a atacantes remotos con la intervención del usuario ejecutar código de su elección a través de un nombre de fuente largo en un archivo .PMD. • http://osvdb.org/38067 http://secunia.com/advisories/27158 http://securitytracker.com/id?1018791 http://vuln.sg/pagemaker701-en.html http://www.adobe.com/support/security/bulletins/apsb07-15.html http://www.securityfocus.com/bid/25989 http://www.vupen.com/english/advisories/2007/3441 https://exchange.xforce.ibmcloud.com/vulnerabilities/37041 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 4.6EPSS: 0%CPEs: 60EXPL: 0

Multiple Adobe products, including (1) Photoshop CS2, (2) Illustrator CS2, and (3) Adobe Help Center, install a large number of .EXE and .DLL files with write-access permission for the Everyone group, which allows local users to gain privileges via Trojan horse programs. • http://secunia.com/advisories/18698 http://securitytracker.com/id?1015577 http://securitytracker.com/id?1015578 http://securitytracker.com/id?1015579 http://www.adobe.com/support/techdocs/332644.html http://www.cs.princeton.edu/~sudhakar/papers/winval.pdf http://www.kb.cert.org/vuls/id/953860 http://www.osvdb.org/22908 http://www.securityfocus.com/archive/1/423587/100/0/threaded http://www.securityfocus.com/bid/16451 http://www.vupen.com/english/advisories/2006/ • CWE-264: Permissions, Privileges, and Access Controls •