2.6
CVE-2006-1787
- EPSS 1.95%
- Veröffentlicht 13.04.2006 22:02:00
- Zuletzt bearbeitet 16.06.2026 22:23:40
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Adobe Document Server for Reader Extensions 6.0 includes a user's session (jsession) ID in the HTTP Referer header, which allows remote attackers to gain access to PDF files that are being processed within that session.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Adobe ≫ Document Server Version6.0 Editionreader_extensions
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.95% | 0.776 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.6 | 4.9 | 2.9 |
AV:N/AC:H/Au:N/C:P/I:N/A:N
|
http://secunia.com/advisories/15924
http://secunia.com/secunia_research/2005-68/advisory/
http://www.adobe.com/support/techdocs/322699.html
http://www.securityfocus.com/archive/1/430869/100/0/threaded
http://www.securityfocus.com/bid/17500
http://www.vupen.com/english/advisories/2006/1342
http://www.adobe.com/support/techdocs/331915.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/25773