Vulnerabilities > CVE-2001-1069 - Unspecified vulnerability in Adobe Acrobat Reader 4.0.5

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

adobe

NVD

Published: 2001-08-31

Updated: 2017-10-10

Summary

libCoolType library as used in Adobe Acrobat (acroread) on Linux creates the AdobeFnt.lst file with world-writable permissions, which allows local users to modify the file and possibly modify acroread's behavior.

Vulnerable Configurations

Part	Description	Count
Application	Adobe Adobe Acrobat Reader 4.0.5	1

References

http://lists.debian.org/debian-security/2001/debian-security-200101/msg00085.html
http://marc.info/?l=bugtraq&m=99849121502399&w=2
http://www.securityfocus.com/bid/3225
https://exchange.xforce.ibmcloud.com/vulnerabilities/7024