Vulnerability Details CVE-2005-1842
VCNative for Adobe Version Cue 1.0 and 1.0.1, as used in Creative Suite 1.0 and 1.3, and when running on Mac OS X with Version Cue Workspace, creates temporary log files with predictable names, which allows local users to modify arbitrary files via a symlink attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 48.7%
CVSS Severity
CVSS v2 Score 2.1
References
- http://secunia.com/advisories/16541
- http://securitytracker.com/id?1014776
- http://www.adobe.com/support/techdocs/327129.html
- http://www.idefense.com/application/poi/display?id=297&type=vulnerabilities
- http://www.securityfocus.com/bid/14638
- http://secunia.com/advisories/16541
- http://securitytracker.com/id?1014776
- http://www.adobe.com/support/techdocs/327129.html
- http://www.idefense.com/application/poi/display?id=297&type=vulnerabilities
- http://www.securityfocus.com/bid/14638
Products affected by CVE-2005-1842
-
cpe:2.3:a:adobe:version_cue:1.0
-
cpe:2.3:a:adobe:version_cue:1.0.1