CVE-2005-0918

CVE Database · CVE-2005-0918

CVE-2005-0918

· N/AModified

CVSS v3.1

N/A

EPSS

2.36%

Published

May 5, 2005

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The NPSVG3.dll ActiveX control for Adobe SVG Viewer 3.02 and earlier, when running on Internet Explorer, allows remote attackers to determine the existence of arbitrary files by setting the src property to the target filename and using Javascript to determine if the web page immediately stops loading, which indicates whether the file exists or not.

Weaknesses (CWE)

CWE-203

Affected Products (2)

adobe · svg_viewervulnerable

microsoft · internet_explorer

References (8)

http://secunia.com/advisories/15255

Broken LinkVendor Advisory

http://securitytracker.com/id?1013890

Broken LinkThird Party AdvisoryVDB Entry

http://www.adobe.com/support/techdocs/323585.html

Broken LinkPatch

http://www.hyperdose.com/advisories/H2005-07.txt

Broken LinkExploitPatch

http://secunia.com/advisories/15255

Broken LinkVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs