CVE-2007-6253

{"id": "CVE-2007-6253", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2008-03-12T00:44:00.000", "references": [{"url": "http://secunia.com/advisories/29330", "tags": ["Vendor Advisory"], "source": "cret@cert.org"}, {"url": "http://www.adobe.com/support/security/bulletins/apsb08-09.html", "tags": ["Patch"], "source": "cret@cert.org"}, {"url": "http://www.kb.cert.org/vuls/id/362849", "tags": ["US Government Resource"], "source": "cret@cert.org"}, {"url": "http://www.securityfocus.com/bid/28210", "tags": ["Patch"], "source": "cret@cert.org"}, {"url": "http://www.securitytracker.com/id?1019601", "source": "cret@cert.org"}, {"url": "http://www.vupen.com/english/advisories/2008/0863/references", "tags": ["Vendor Advisory"], "source": "cret@cert.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41142", "source": "cret@cert.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in Adobe Form Designer 5.0 and Form Client 5.0 allow remote attackers to execute arbitrary code via unknown vectors in the (1) Adobe File Dialog Button (FileDlg.dll) and the (2) Adobe Copy to Server Object (SvrCopy.dll) ActiveX controls."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer en Adobe Form Designer versi\u00f3n 5.0 y Form Client versi\u00f3n 5.0, permiten a atacantes remotos ejecutar c\u00f3digo arbitrario por medio de vectores desconocidos en los controles ActiveX de (1) Adobe File Dialog Button (biblioteca FileDlg.dll) y (2) Adobe Copy to Server Object (biblioteca SvrCopy.dll)."}], "lastModified": "2017-08-08T01:29:02.883", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:adobe:form_client:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2A6E54F6-AF15-4A2E-8C46-A6E043B158D9"}, {"criteria": "cpe:2.3:a:adobe:form_designer:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBA789DC-3CDA-4613-8202-3501097D0B19"}], "operator": "OR"}]}], "sourceIdentifier": "cret@cert.org"}