Vulnerability Description
Adobe Reader and Acrobat 6.0.4 and earlier, on Mac OSX, has insecure file and directory permissions, which allows local users to gain privileges by overwriting program files.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Acrobat | <= 6.0.4 |
| Adobe | Acrobat Reader | <= 6.0.4 |
References
- http://secunia.com/advisories/21016PatchVendor Advisory
- http://securitytracker.com/id?1016473
- http://www.adobe.com/support/security/bulletins/apsb06-08.htmlPatch
- http://www.osvdb.org/27157
- http://www.securityfocus.com/bid/18945Patch
- http://www.vupen.com/english/advisories/2006/2758
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27678
- http://secunia.com/advisories/21016PatchVendor Advisory
- http://securitytracker.com/id?1016473
- http://www.adobe.com/support/security/bulletins/apsb06-08.htmlPatch
- http://www.osvdb.org/27157
- http://www.securityfocus.com/bid/18945Patch
- http://www.vupen.com/english/advisories/2006/2758
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27678
FAQ
What is CVE-2006-3452?
CVE-2006-3452 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Adobe Reader and Acrobat 6.0.4 and earlier, on Mac OSX, has insecure file and directory permissions, which allows local users to gain privileges by overwriting program files.
How severe is CVE-2006-3452?
CVE-2006-3452 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-3452?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Acrobat, Adobe Acrobat Reader.