Описание
The Connectables feature in Adobe PhotoDeluxe 3.1 prepends the Adobe directory to the CLASSPATH environment variable, which allows applets to run with higher privileges and remote attackers to gain privileges via an HTML e-mail message or a web page.
Ссылки
- US Government Resource
- US Government Resource
- Vendor Advisory
- US Government Resource
- US Government Resource
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:adobe:photodeluxe:3.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:photodeluxe:3.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:photodeluxe:4.0:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.03018
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
The Connectables feature in Adobe PhotoDeluxe 3.1 prepends the Adobe directory to the CLASSPATH environment variable, which allows applets to run with higher privileges and remote attackers to gain privileges via an HTML e-mail message or a web page.
EPSS
Процентиль: 86%
0.03018
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other