Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3452

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2006-3452
Last Modified 07 Mar 2011 09:38:40
Published 12 Jul 2006 06:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-3452

Summary

Adobe Reader and Acrobat 6.0.4 and earlier, on Mac OSX, has insecure file and directory permissions, which allows local users to gain privileges by overwriting program files.

Vulnerable Systems

Application

  • Adobe Acrobat 3.0

  • Adobe Acrobat 3.1

  • Adobe Acrobat 4.0

  • Adobe Acrobat 4.0.5

  • Adobe Acrobat 4.0.5a

  • Adobe Acrobat 4.0.5c

  • Adobe Acrobat 5.0

  • Adobe Acrobat 5.0.10

  • Adobe Acrobat 5.0.5

  • Adobe Acrobat 6.0

  • Adobe Acrobat 6.0.1

  • Adobe Acrobat 6.0.2

  • Adobe Acrobat 6.0.3

  • Adobe Acrobat 6.0.4

  • Adobe Acrobat Reader 3.0

  • Adobe Acrobat Reader 4.0

  • Adobe Acrobat Reader 4.0.5

  • Adobe Acrobat Reader 4.0.5a

  • Adobe Acrobat Reader 4.0.5c

  • Adobe Acrobat Reader 5.0

  • Adobe Acrobat Reader 5.0.10

  • Adobe Acrobat Reader 5.0.5

  • Adobe Acrobat Reader 5.1

  • Adobe Acrobat Reader 6.0

  • Adobe Acrobat Reader 6.0.1

  • Adobe Acrobat Reader 6.0.2

  • Adobe Acrobat Reader 6.0.3

  • Adobe Acrobat Reader 6.0.4


References

BID - 18945

CONFIRM - http://www.adobe.com/support/security/bulletins/apsb06-08.html

SECUNIA - 21016

VUPEN - ADV-2006-2758

XF - acrobat-reader-insecure-permissions(27678)

OSVDB - 27157

SECTRACK - 1016473


Last Updated: 27 May 2016 10:43:01