Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2002-1016 — Adobe Digital Editions vulnerability

4 documents4 sources

Severity

4.6MEDIUMNVD

EPSS

0.9%

top 23.64%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Adobe Digital Editions

Timeline

PublishedOct 4

Latest updateApr 30

Description

Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the original data files.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDadobe/digital_editions2.2

🔴Vulnerability Details

GHSA

GHSA-h7f8-j554-2gxj: Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operat↗2022-04-30

▶

CVEList

CVE-2002-1016: Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operat↗2002-08-31

▶

💥Exploits & PoCs

Exploit-DB

Adobe eBook Reader 2.2 - File Restoration Privilege Escalation↗2002-07-19

▶