6.9

CVE-2011-0562

Untrusted search path vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerability than CVE-2011-0570 and CVE-2011-0588.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdobeAcrobat Reader Version8.0
   MicrosoftWindows
AdobeAcrobat Reader Version8.1
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.1
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.2
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.4
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.5
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.6
   MicrosoftWindows
AdobeAcrobat Reader Version8.1.7
   MicrosoftWindows
AdobeAcrobat Reader Version8.2
   MicrosoftWindows
AdobeAcrobat Reader Version8.2.1
   MicrosoftWindows
AdobeAcrobat Reader Version8.2.2
   MicrosoftWindows
AdobeAcrobat Reader Version8.2.3
   MicrosoftWindows
AdobeAcrobat Reader Version8.2.4
   MicrosoftWindows
AdobeAcrobat Reader Version9.0
   MicrosoftWindows
AdobeAcrobat Reader Version9.1
   MicrosoftWindows
AdobeAcrobat Reader Version9.1.1
   MicrosoftWindows
AdobeAcrobat Reader Version9.1.2
   MicrosoftWindows
AdobeAcrobat Reader Version9.1.3
   MicrosoftWindows
AdobeAcrobat Reader Version9.2
   MicrosoftWindows
AdobeAcrobat Reader Version9.3
   MicrosoftWindows
AdobeAcrobat Reader Version9.3.1
   MicrosoftWindows
AdobeAcrobat Reader Version9.3.2
   MicrosoftWindows
AdobeAcrobat Reader Version9.3.3
   MicrosoftWindows
AdobeAcrobat Reader Version9.3.4
   MicrosoftWindows
AdobeAcrobat Reader Version9.4
   MicrosoftWindows
AdobeAcrobat Reader Version9.4.1
   MicrosoftWindows
AdobeAcrobat Reader Version10.0
   MicrosoftWindows
AdobeAcrobat Version8.0
   MicrosoftWindows
AdobeAcrobat Version8.1
   MicrosoftWindows
AdobeAcrobat Version8.1.1
   MicrosoftWindows
AdobeAcrobat Version8.1.2
   MicrosoftWindows
AdobeAcrobat Version8.1.3
   MicrosoftWindows
AdobeAcrobat Version8.1.4
   MicrosoftWindows
AdobeAcrobat Version8.1.5
   MicrosoftWindows
AdobeAcrobat Version8.1.6
   MicrosoftWindows
AdobeAcrobat Version8.1.7
   MicrosoftWindows
AdobeAcrobat Version8.2
   MicrosoftWindows
AdobeAcrobat Version8.2.1
   MicrosoftWindows
AdobeAcrobat Version8.2.2
   MicrosoftWindows
AdobeAcrobat Version8.2.3
   MicrosoftWindows
AdobeAcrobat Version8.2.4
   MicrosoftWindows
AdobeAcrobat Version9.0
   MicrosoftWindows
AdobeAcrobat Version9.1
   MicrosoftWindows
AdobeAcrobat Version9.1.1
   MicrosoftWindows
AdobeAcrobat Version9.1.2
   MicrosoftWindows
AdobeAcrobat Version9.1.3
   MicrosoftWindows
AdobeAcrobat Version9.2
   MicrosoftWindows
AdobeAcrobat Version9.3
   MicrosoftWindows
AdobeAcrobat Version9.3.1
   MicrosoftWindows
AdobeAcrobat Version9.3.2
   MicrosoftWindows
AdobeAcrobat Version9.3.3
   MicrosoftWindows
AdobeAcrobat Version9.3.4
   MicrosoftWindows
AdobeAcrobat Version9.4
   MicrosoftWindows
AdobeAcrobat Version9.4.1
   MicrosoftWindows
AdobeAcrobat Version10.0
   MicrosoftWindows
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.67% 0.472
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.9 3.4 10
AV:L/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.adobe.com/support/security/bulletins/apsb11-03.html
Patch
Vendor Advisory
http://www.securitytracker.com/id?1025033
http://www.vupen.com/english/advisories/2011/0337
Vendor Advisory
http://secunia.com/advisories/43470
http://www.acrossecurity.com/aspr/ASPR-2011-02-11-1-PUB.txt
http://www.redhat.com/support/errata/RHSA-2011-0301.html
http://www.securityfocus.com/archive/1/516399/100/0/threaded
http://www.securityfocus.com/bid/46252
http://www.vupen.com/english/advisories/2011/0492
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12555