PT-2008-6025 · Adobe · Reader+1

Publicado

2008-11-05

·

Atualizado

2018-10-30

·

CVE-2008-4815

CVSS v2.0

7.5

Alta

VetorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions Adobe Reader and Acrobat versions 8.1.2 and earlier
Description The issue allows attackers to gain privileges via a Trojan Horse program in an unspecified directory associated with an insecure RPATH. This is related to an untrusted search path vulnerability.
Recommendations For Adobe Reader and Acrobat versions 8.1.2 and earlier, consider restricting access to directories that may be associated with an insecure RPATH to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2008-4815
RHSA-2008:0974

Produtos afetados

Acrobat
Reader