CVE-2005-1624
CVSSN/A
发布时间 :2005-05-17 00:00:00
修订时间 :2005-05-17 00:00:00
MOS    

[原文]** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.


[CNNVD]CNNVD数据暂缺。


[机译]**储备**候选人由一个组织或个人将使用它宣布了新的安全问题时,已预留。

- CVSS (基础分值)

CVSS暂不可用

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1624
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-1624
(官方数据源) NVD

- 其它链接及资源

- 漏洞信息

17606
Adobe Reader/Acrobat for Mac OS Updater Safari Frameworks Privilege Escalation

- 漏洞描述

Unknown or Incomplete

- 时间线

2005-06-27 Unknow
Unknow Unknow

- 解决方案

Upgrade to version 7.0.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Adobe Acrobat/Adobe Reader Safari Frameworks Folder Permission Escalation Vulnerability
Design Error 14075
No Yes
2005-06-27 12:00:00 2009-07-12 04:06:00
Discovery is credited to John C. Welch.

- 受影响的程序版本

Adobe Reader 7.0.1
Adobe Reader 7.0
Adobe Acrobat 7.0.1
Adobe Acrobat 7.0
Adobe Reader 7.0.2
Adobe Acrobat 7.0.2

- 不受影响的程序版本

Adobe Reader 7.0.2
Adobe Acrobat 7.0.2

- 漏洞讨论

Adobe Acrobat and Adobe Reader running on Mac OS X are affected by a folder permission escalation vulnerability.

The vulnerability exists in the Adobe Reader and Acrobat updater.

A successful attack can allow local attackers to add potentially malicious Frameworks leading to various attacks including potential privilege escalation.

- 漏洞利用

An exploit is not required to leverage this issue.

- 解决方案

Adobe has released an advisory including updates to address this issue.


Adobe Acrobat 7.0

Adobe Reader 7.0

Adobe Reader 7.0.1

Adobe Acrobat 7.0.1

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站