CVE-2012-0765

Name of the Vulnerable Software and Affected Versions Adobe RoboHelp versions 8 and 9

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary web script or HTML via a crafted URL. This is related to certain .htm files in the template stock and template csh directories.

Recommendations For Adobe RoboHelp version 8, update to a version that includes the fix for this issue. For Adobe RoboHelp version 9, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the template stock and template csh directories to minimize the risk of exploitation.