Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4815

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-4815
Last Modified 05 Nov 2012 11:10:42
Published 05 Nov 2008 10:00:14
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4815

Summary

Untrusted search path vulnerability in Adobe Reader and Acrobat 8.1.2 and earlier on Unix and Linux allows attackers to gain privileges via a Trojan Horse program in an unspecified directory that is associated with an insecure RPATH.

Vulnerable Systems

Application

  • Adobe Acrobat 8.1.1

  • Adobe Acrobat 8.1.2

  • Adobe Reader 8.1.2


References

CERT - TA08-309A

CONFIRM - http://www.adobe.com/support/security/bulletins/apsb08-19.html

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=469882

XF - adobe-acrobat-reader-priv-escalation(46335)

VUPEN - ADV-2009-0098

VUPEN - ADV-2008-3001

BID - 32100

REDHAT - RHSA-2008:0974

SECUNIA - 32872

SECUNIA - 32700

SUSE - SUSE-SR:2008:026

SECTRACK - 1021140

SUNALERT - 249366

Related Patches

Adobe Acrobat 8.1.3 Update for Mac

Adobe Reader 8.1.3 Update for Macintosh (PPC)

Adobe Reader 8.1.3 Update for Windows (Rev 2)


Last Updated: 27 May 2016 10:49:44