Vulnerability Description
Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows mishandle junctions in the Synchronizer directory, which allows attackers to delete arbitrary files via Adobe Collaboration Sync, a related issue to CVE-2015-2428.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Acrobat | >= 10.0, <= 10.1.15 |
| Adobe | Acrobat Dc | >= 15.006.30060, < 15.006.30094 |
| Adobe | Acrobat Reader | >= 10.0, <= 10.1.15 |
| Adobe | Acrobat Reader Dc | >= 15.006.30060, < 15.006.30094 |
| Apple | Macos | - |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- http://www.securitytracker.com/id/1033796Third Party AdvisoryVDB Entry
- http://www.zerodayinitiative.com/advisories/ZDI-15-465Third Party AdvisoryVDB Entry
- https://helpx.adobe.com/security/products/acrobat/apsb15-24.htmlPatchVendor Advisory
- http://www.securitytracker.com/id/1033796Third Party AdvisoryVDB Entry
- http://www.zerodayinitiative.com/advisories/ZDI-15-465Third Party AdvisoryVDB Entry
- https://helpx.adobe.com/security/products/acrobat/apsb15-24.htmlPatchVendor Advisory
FAQ
What is CVE-2015-7829?
CVE-2015-7829 is a vulnerability with a CVSS score of 1.9 (LOW). Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on...
How severe is CVE-2015-7829?
CVE-2015-7829 has been rated LOW with a CVSS base score of 1.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-7829?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Acrobat, Adobe Acrobat Dc, Adobe Acrobat Reader, Adobe Acrobat Reader Dc, Apple Macos.