The Acrobat web control in Adobe Acrobat and Acrobat Reader 7.0 and earlier, when used with Internet Explorer, allows remote attackers to determine the existence of arbitrary files via the LoadFile ActiveX method.
2005-05-02T04:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 5.1 (MEDIUM)
AV:N/AC:H/Au:N/C:P/I:P/A:P
4.9
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | adobe | acrobat_reader | 4.5 | Yes |
| Application | adobe | acrobat_reader | 5.0 | Yes |
| Application | adobe | acrobat_reader | 5.0.5 | Yes |
| Application | adobe | acrobat_reader | 5.1 | Yes |
| Application | adobe | acrobat_reader | 6.0 | Yes |
| Application | adobe | acrobat_reader | 6.0.1 | Yes |
| Application | adobe | acrobat_reader | 6.0.2 | Yes |
| Application | adobe | acrobat_reader | 6.0.3 | Yes |
| Application | adobe | acrobat_reader | 7.0 | Yes |