Arbitrary File Modification in Adobe Version Cue by Adobe Systems
CVE-2005-1842

Currently unrated

Key Information:

Vendor: Adobe
Status: Version Cue
Vendor: CVE Published:; 24 August 2005

What is CVE-2005-1842?

Adobe Version Cue prior to version 1.0.2 for Mac OS X has a security issue due to the creation of temporary log files with easily guessable names. This vulnerability enables local users to exploit symlink attacks, allowing them to overwrite important files through modified symlinks. Such an attack poses a risk of data loss and unauthorized data manipulation, affecting the integrity of the affected Adobe Creative Suite products.

References

http://www.securityfocus.com/bid/14638

vdb-entryx_refsource_BID

http://www.adobe.com/support/techdocs/327129.html

x_refsource_CONFIRM

http://securitytracker.com/id?1014776

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 24, 2005
Vulnerability Reserved
Jun 3, 2005