According to the Adobe Systems Incorporated Information for VU#200132 http://www.kb.cert.org/vuls/id/IAFY-5MCQ4L CERT/CC Vulnerability Note VU#200132 http://www.kb.cert.org/vuls/id/200132 Acrobat Reader before 5.0.7 has a vulnerability that may allow remote attackers to execute arbitrary commands on a target system. Fix: Apply followng patch;
Responsible Changed From-To: freebsd-ports-bugs->trevor Over to maintainer.
Oops, I forgot to fill following section; >How-To-Repeat: Check [Full-Disclosure] -10Day CERT Advisory on PDF Files http://lists.netsys.com/pipermail/full-disclosure/2003-June/010397.html The way describes above can be reproducable in my environment (acroread-5.06, linux_base-7.1_3). acroread-5.07 is not affected this vulnerability. PS. ports/converters/base64 will help to decode base64-encoded file attached at that message. -- rushani
State Changed From-To: open->closed Committed, thanks!