>> Adobe Acrobat and Adobe Reader Insecure Permissions Local File Manipulation Vulnerability
Title : Adobe Acrobat and Adobe Reader Insecure Permissions Local File Manipulation Vulnerability VUPEN ID : VUPEN/ADV-2006-2758 CVE ID : CVE-2006-3452
Rated as : Low Risk
Remotely Exploitable : No Locally Exploitable : Yes Release Date : 2006-07-12
Technical Description
A vulnerability has been identified in Adobe Reader and Adobe Acrobat (Mac OS), which could be exploited by malicious users to manipulate arbitrary files. This flaw is due to insecure file and folder permissions, which could be exploited by non-privileged users to change key program files and replace them with malicious or harmful code that could read, write, or destroy sensitive data if subsequently run by a privileged user.
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback If you have additional information or corrections for this security advisory please submit them via our contact form.
