CVE-2016-1008

Sažetak

Untrusted search path vulnerability in Adobe Reader and Acrobat before 11.0.15, Acrobat and Acrobat Reader DC Classic before 15.006.30121, and Acrobat and Acrobat Reader DC Continuous before 15.010.20060 on Windows and OS X allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.

Reference

http://www.securityfocus.com/bid/84216
http://www.securitytracker.com/id/1035199
http://www.zerodayinitiative.com/advisories/ZDI-16-190
https://helpx.adobe.com/security/products/acrobat/apsb16-09.html

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

03-12-2016 - 03:19

Objavljeno

09-03-2016 - 11:59