Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-1843

4 documents4 sources
Severity
4.6MEDIUM
EPSS
1.0%
top 23.61%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Adobe Version CUE
Timeline
PublishedAug 24
Latest updateMay 1

Description

VCNative for Adobe Version Cue 1.0 and 1.0.1, as used in Creative Suite 1.0 and 1.3, and when running on Mac OS X with Version Cue Workspace, allows local users to load arbitrary libraries and execute arbitrary code via the -lib command line argument.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

NVDadobe/version_cue1.0, 1.0.1+1

Patches

Patch: secunia.comPatch: www.adobe.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-7v28-wwrv-6qj4: VCNative for Adobe Version Cue 12022-05-01
CVEList
CVE-2005-1843: VCNative for Adobe Version Cue 12005-08-24

💥Exploits & PoCs

1
Exploit-DB
Adobe Version Cue 1.0/1.0.1 (OSX) - '-lib' Local Privilege Escalation2005-08-30
CVE-2005-1843 (MEDIUM CVSS 4.6) | VCNative for Adobe Version Cue 1.0 | cvebase.io