Lucene search

[email protected]CVE-2001-1069

HistorySep 01, 2004 - 4:00 a.m.

CVE-2001-1069

2004-09-0104:00:00

[email protected]

web.nvd.nist.gov

adobe

libcooltype

acrobat

linux

vulnerability

cve-2001-1069

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

Percentile

10.4%

JSON

libCoolType library as used in Adobe Acrobat (acroread) on Linux creates the AdobeFnt.lst file with world-writable permissions, which allows local users to modify the file and possibly modify acroread’s behavior.

Affected configurations

NVD

Node

adobeacrobat_readerMatch4.0.5

VendorProductVersionCPE
adobeacrobat_reader4.0.5cpe:/a:adobe:acrobat_reader:4.0.5:::

Vendor	Product	Version	CPE
adobe	acrobat_reader	4.0.5	cpe:/a:adobe:acrobat_reader:4.0.5:::

References

lists.debian.org/debian-security/2001/debian-security-200101/msg00085.html

marc.info/?l=bugtraq&m=99849121502399&w=2

www.securityfocus.com/bid/3225

exchange.xforce.ibmcloud.com/vulnerabilities/7024

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

Percentile

10.4%

JSON

Related for CVE-2001-1069

nvd1 cvelist1 openvas1