PT-2005-2810 · Adobe+1 · Creative Suite+3

Published

2005-08-24

Updated

2008-09-05

CVE-2005-1843

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions VCNative for Adobe Version Cue versions 1.0 through 1.0.1

Description The issue allows local users to load arbitrary libraries and execute arbitrary code via the -lib command line argument when running on Mac OS X with Version Cue Workspace. This is particularly relevant in the context of Creative Suite versions 1.0 and 1.3.

Recommendations For VCNative for Adobe Version Cue versions 1.0 through 1.0.1, consider restricting the use of the -lib command line argument to prevent the execution of arbitrary code until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1843

Affected Products

Creative Suite

Macos X

Vcnative For Adobe Version Cue

Version Cue Workspace

PT-2005-2810 · Adobe+1 · Creative Suite+3

CVE-2005-1843

Related Identifiers

Affected Products

References · 7