Privilege Escalation Vulnerability in Adobe Products
CVE-2006-0525

Currently unrated

Key Information:

Vendor: Adobe
Status: Creative Suite; Acrobat Reader; Illustrator; Acrobat
Vendor: CVE Published:; 2 February 2006

What is CVE-2006-0525?

Several Adobe products, such as Photoshop CS2 and Illustrator CS2, have a security issue where a significant number of .EXE and .DLL files are installed with write-access permissions set for the Everyone group. This misconfiguration can allow local users to exploit this vulnerability, potentially using Trojan horse programs to gain elevated privileges on the system. It highlights the importance of proper file permission settings to protect sensitive resources from unauthorized access.

References

http://www.adobe.com/support/techdocs/332644.html

x_refsource_CONFIRM

http://www.securityfocus.com/bid/16451

vdb-entryx_refsource_BID

http://securitytracker.com/id?1015577

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 2, 2006
Vulnerability Reserved
Feb 2, 2006