Adobe Acrobat Reader Plugin before 8.0.0 for the Firefox, Internet Explorer, and Opera web browsers allows remote attackers to force the browser to make unauthorized requests to other web sites via a URL in the (1) FDF, (2) xml, and (3) xfdf AJAX request parameters, following the # (hash) character, aka "Universal CSRF and session riding."
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-01-03T20:00:00
Updated: 2018-10-16T14:57:01
Reserved: 2007-01-03T00:00:00
Link: CVE-2007-0044
JSON object: View
NVD Information
Status : Modified
Published: 2007-01-03T21:28:00.000
Modified: 2018-10-16T16:30:44.477
Link: CVE-2007-0044
JSON object: View
Redhat Information
No data.
CWE