CVE-2016-1090

Untrusted search path vulnerability in Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allows local users to gain privileges via a Trojan horse resource in an unspecified directory, a different vulnerability than CVE-2016-1087 and CVE-2016-4106.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
OR cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*
cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*
cpe:2.3:a:adobe:reader:*:*:*:*:*:*:*:*

History

21 Nov 2024, 02:45

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/90513 - () http://www.securityfocus.com/bid/90513 -
References () http://www.securitytracker.com/id/1035828 - () http://www.securitytracker.com/id/1035828 -
References () https://helpx.adobe.com/security/products/acrobat/apsb16-14.html - Patch, Vendor Advisory () https://helpx.adobe.com/security/products/acrobat/apsb16-14.html - Patch, Vendor Advisory

Information

Published : 2016-05-11 11:00

Updated : 2024-11-21 02:45


NVD link : CVE-2016-1090

Mitre link : CVE-2016-1090

CVE.ORG link : CVE-2016-1090


JSON object : View

Products Affected

adobe

  • acrobat
  • acrobat_dc
  • reader
  • acrobat_reader_dc

apple

  • mac_os_x

microsoft

  • windows