Vulnerability Description
Untrusted search path vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerability than CVE-2011-0570 and CVE-2011-0588.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Acrobat Reader | 8.0 |
| Microsoft | Windows | All versions |
| Adobe | Acrobat | 8.0 |
References
- http://secunia.com/advisories/43470
- http://www.acrossecurity.com/aspr/ASPR-2011-02-11-1-PUB.txt
- http://www.adobe.com/support/security/bulletins/apsb11-03.htmlPatchVendor Advisory
- http://www.redhat.com/support/errata/RHSA-2011-0301.html
- http://www.securityfocus.com/archive/1/516399/100/0/threaded
- http://www.securityfocus.com/bid/46252
- http://www.securitytracker.com/id?1025033
- http://www.vupen.com/english/advisories/2011/0337Vendor Advisory
- http://www.vupen.com/english/advisories/2011/0492
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://secunia.com/advisories/43470
- http://www.acrossecurity.com/aspr/ASPR-2011-02-11-1-PUB.txt
- http://www.adobe.com/support/security/bulletins/apsb11-03.htmlPatchVendor Advisory
- http://www.redhat.com/support/errata/RHSA-2011-0301.html
- http://www.securityfocus.com/archive/1/516399/100/0/threaded
FAQ
What is CVE-2011-0562?
CVE-2011-0562 is a vulnerability with a CVSS score of 6.9 (MEDIUM). Untrusted search path vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows allows local users to gain privileges via a Trojan horse DLL in th...
How severe is CVE-2011-0562?
CVE-2011-0562 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-0562?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Acrobat Reader, Microsoft Windows, Adobe Acrobat.