CVE-2005-0035

The Acrobat web control in Adobe Acrobat and Acrobat Reader 7.0 and earlier, when used with Internet Explorer, allows remote attackers to determine the existence of arbitrary files via the LoadFile ActiveX method.

Published: May 2, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-0035
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
adobe / acrobat_reader	4.5	4.5.x
adobe / acrobat_reader	5.0	5.0.x
adobe / acrobat_reader	6.0.3	6.0.3.x
adobe / acrobat_reader	5.0.5	5.0.5.x
adobe / acrobat_reader	7.0	7.0.x
adobe / acrobat_reader	6.0.1	6.0.1.x
adobe / acrobat_reader	5.1	5.1.x
adobe / acrobat_reader	6.0	6.0.x
adobe / acrobat_reader	6.0.2	6.0.2.x

http://secunia.com/advisories/14813
http://www.adobe.com/support/techdocs/331465.html
http://www.hyperdose.com/advisories/H2005-06.txt
http://www.niscc.gov.uk/niscc/docs/re-20050401-00264.pdf
http://www.osvdb.org/15242
http://www.securityfocus.com/bid/12989
http://www.vupen.com/english/advisories/2005/0310

Vulnerability Database

289,697

CVE-2005-0035