CVE-2011-0570Adobe Acrobat vulnerability

8 documents4 sources
Severity
6.9MEDIUMNVD
EPSS
0.1%
top 70.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Adobe AcrobatAdobe Acrobat Reader
Timeline
PublishedFeb 10
Latest updateMay 14

Description

Untrusted search path vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerability than CVE-2011-0562 and CVE-2011-0588.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages2 packages

NVDadobe/acrobat_reader27 versions+26
NVDadobe/acrobat28 versions+27

Patches

Patch: www.adobe.comPatch: www.adobe.com

🔴Vulnerability Details

3
GHSA
GHSA-pmv9-g95v-j898: Untrusted search path vulnerability in Adobe Reader and Acrobat 102022-05-14
GHSA
GHSA-ghf6-w8vq-63r5: Untrusted search path vulnerability in Adobe Reader and Acrobat 102022-05-14
GHSA
GHSA-6xrv-8cp2-4hf8: Untrusted search path vulnerability in Adobe Reader and Acrobat 102022-05-14

📋Vendor Advisories

1
Red Hat
acroread: critical APSB11-032011-02-08

💬Community

1
Bugzilla
CVE-2011-0562 CVE-2011-0563 CVE-2011-0565 CVE-2011-0566 CVE-2011-0567 CVE-2011-0585 CVE-2011-0586 CVE-2011-0589 CVE-2011-0590 CVE-2011-0591 CVE-2011-0592 CVE-2011-0593 CVE-2011-0594 CVE-2011-0595 acro2011-02-08
CVE-2011-0570 — Adobe Acrobat vulnerability | cvebase