header-logo
Suggest Exploit
vendor:
Document Server for Reader Extensions
by:
SecurityFocus
7.5
CVSS
HIGH
Cross-site scripting, Information Disclosure, Security Bypass
79, 200, 287
CWE
Product Name: Document Server for Reader Extensions
Affected Version From: 6
Affected Version To: 6
Patch Exists: Yes
Related CWE: N/A
CPE: a:adobe:document_server_for_reader_extensions
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2005

Adobe Document Server for Reader Extensions Multiple Vulnerabilities

Adobe Document Server for Reader Extensions, included with Graphics Server and Document Server, is prone to multiple vulnerabilities that may allow remote attackers to perform cross-site scripting attacks, gain access to potentially sensitive information, and bypass security restrictions to gain administrative access to the application. Adobe Document Server for Reader Extensions version 6.0, included with Adobe Graphics Server 2.1 and Adobe Document Server 6.0, is vulnerable; other versions may also be affected.

Mitigation:

Adobe has released a patch to address this issue. Users should upgrade to the latest version of Adobe Document Server for Reader Extensions.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/17500/info
 
Adobe Document Server for Reader Extensions, included with Graphics Server and Document Server, is prone to multiple vulnerabilities that may allow remote attackers to:
 
- perform cross-site scripting attacks
- gain access to potentially sensitive information
- bypass security restrictions to gain administrative access to the application.
 
Adobe Document Server for Reader Extensions version 6.0, included with Adobe Graphics Server 2.1 and Adobe Document Server 6.0, is vulnerable; other versions may also be affected.

http://www.example.com:8019/altercast/AlterCast?op=[code]

Navigation

Suggest Exploit

Services By CQR