CVE-2020-9668

Name of the Vulnerable Software and Affected Versions Adobe Genuine Service versions 6.6 and earlier

Description The issue is related to improper access control when handling symbolic links, allowing an unauthenticated attacker to elevate privileges in the context of the current user. Additionally, there is a buffer overflow vulnerability in memory, which could enable a remote attacker to overwrite arbitrary files and gain elevated privileges.

Recommendations For Adobe Genuine Service versions 6.6 and earlier, as a temporary workaround, consider restricting access to the service until a patch is available. Avoid using the service for handling symbolic links until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.