CVE-2005-1307

Name of the Vulnerable Software and Affected Versions: Adobe Version Cue (affected versions not specified)

Description: The issue concerns the stopserver.sh and startserver.sh scripts in Adobe Version Cue on Mac OS X. These scripts use the current working directory to find and execute the productname.sh script. This behavior allows local users to execute arbitrary code by copying the scripts to a user-controlled directory and then calling them from that location.

Recommendations: For Adobe Version Cue, consider restricting access to the stopserver.sh and startserver.sh scripts to minimize the risk of exploitation. As a temporary workaround, avoid using these scripts until a fix is available. At the moment, there is no information about a newer version that contains a fix for this issue.