CVE-2011-2100

medium

Description

Untrusted search path vulnerability in Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory.

References

http://osvdb.org/73062

http://www.adobe.com/support/security/bulletins/apsb11-16.html

http://www.securityfocus.com/bid/48252

http://www.securitytracker.com/id?1025658

http://www.us-cert.gov/cas/techalerts/TA11-166A.html

https://exchange.xforce.ibmcloud.com/vulnerabilities/68014

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14057

Details

Source: MITRE

Published: 2011-06-16

Updated: 2017-09-19

Risk Information

CVSS v2

Base Score: 6.9

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.4

Severity: MEDIUM