CVE-2005-1624: Adobe Reader and Adobe Acrobat updater allows folder elevated privileges

ID CVE-2005-1624
Type cve
Reporter NVD
Modified 2005-06-27T00:00:00


Adobe Reader could allow a remote attacker to gain elevated privileges caused by a vulnerability in the updater. The update within Adobe is designed to elevate privileges of the existing Safari Frameworks folder. However, if there is no frameworks folder in existence, the updater then creates a new folder containing elevated privileges for all users. A remote attacker could exploit this vulnerability by downloading the updates to gain elevated privileges on the system, and possibly add frameworks of the attacker's choice to the system.