Описание
Multiple Adobe products, including (1) Photoshop CS2, (2) Illustrator CS2, and (3) Adobe Help Center, install a large number of .EXE and .DLL files with write-access permission for the Everyone group, which allows local users to gain privileges via Trojan horse programs.
Ссылки
- Vendor Advisory
- Third Party AdvisoryUS Government Resource
- Vendor Advisory
- Vendor Advisory
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:adobe:acrobat:3.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:3.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:4.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:4.0.5a:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:4.0.5c:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:5.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:5.0.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:5.0.10:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:6.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:6.0.4:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat:7.0.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:3.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:4.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:4.0.5a:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:4.0.5c:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:4.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:5.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:5.0.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:5.0.10:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:5.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:6.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:6.0.4:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:7.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:7.0.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:7.0.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:creative_suite:1.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:creative_suite:1.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:creative_suite:2.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:illustrator:7.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:illustrator:8.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:illustrator:9.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:illustrator:10.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:illustrator:cs:*:*:*:*:*:*:*
cpe:2.3:a:adobe:illustrator:cs3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:indesign:cs:*:*:*:*:*:*:*
cpe:2.3:a:adobe:indesign:cs3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:pagemaker:6.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:pagemaker:6.5:*:plus:*:*:*:*:*
cpe:2.3:a:adobe:pagemaker:7.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:pagemaker:7.0:*:plus:*:*:*:*:*
cpe:2.3:a:adobe:photoshop:7.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:photoshop:8.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:photoshop:9.0.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:photoshop:le:*:*:*:*:*:*:*
cpe:2.3:a:adobe:premiere:1.5:*:pro:*:*:*:*:*
cpe:2.3:a:adobe:version_cue:1.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:version_cue:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:version_cue:gold:*:mac_os_x:*:*:*:*:*
EPSS
Процентиль: 47%
0.00237
Низкий
4.6 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
Multiple Adobe products, including (1) Photoshop CS2, (2) Illustrator CS2, and (3) Adobe Help Center, install a large number of .EXE and .DLL files with write-access permission for the Everyone group, which allows local users to gain privileges via Trojan horse programs.
EPSS
Процентиль: 47%
0.00237
Низкий
4.6 Medium
CVSS2
Дефекты
CWE-264