Adobe Acrobat Reader Plugin <= 7.0.x (acroreader) XSS Vulnerability

pub!1c

魔

团队执行官

Rank: 8 Rank: 8

E.S.T核心成员

帖子: 3926
精华: 128
积分: 209876
阅读权限: 200
性别: 男
在线时间: 1117 小时
注册时间: 2007-10-23
最后登录: 2008-11-17

资料收集奖运营支持奖

发短消息
加为好友
当前离线

楼主大中小发表于 2007-1-7 12:14 只看该作者

Adobe Acrobat Reader Plugin <= 7.0.x (acroreader) XSS Vulnerability

复制内容到剪贴板

代码:

</p><pre># Stefano Di Paola
# [url]http://www.wisec.it/[/url]

From Secunia:
Input passed to a hosted PDF file is not properly sanitised by the browser plug-in
before being returned to users. This can be exploited to execute arbitrary script code in
a user's browser session in context of an affected site.

Example:
- http://[host]/[filename].pdf#[some text]=javascript:[code]

</pre><p>

TOP

‹‹ 上一主题 | 下一主题 ››

邪恶八进制信息安全团队技术讨论组 » 安全测试代码{ Exploits and Shellcode } » Adobe Acrobat Reader Plugin <= 7.0.x (acroreader) XSS Vulnerability

Adobe Acrobat Reader Plugin &lt;= 7.0.x (acroreader) XSS Vulnerability

Adobe Acrobat Reader Plugin &lt;= 7.0.x (acroreader) XSS Vulnerability

代码:

Adobe Acrobat Reader Plugin <= 7.0.x (acroreader) XSS Vulnerability

Adobe Acrobat Reader Plugin <= 7.0.x (acroreader) XSS Vulnerability