Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1842

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-1842
Last Modified 05 Sep 2008 04:50:14
Published 24 Aug 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-1842

Summary

VCNative for Adobe Version Cue 1.0 and 1.0.1, as used in Creative Suite 1.0 and 1.3, and when running on Mac OS X with Version Cue Workspace, creates temporary log files with predictable names, which allows local users to modify arbitrary files via a symlink attack.

Vulnerable Systems

Application

  • Adobe Version Cue 1.0

  • Adobe Version Cue 1.0.1


References

CONFIRM - http://www.adobe.com/support/techdocs/327129.html

SECUNIA - 16541

BID - 14638

IDEFENSE - 20050829 Adobe Version Cue VCNative Arbitrary File Overwrite Vulnerability

SECTRACK - 1014776


Last Updated: 27 May 2016 10:40:18