Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-0568
HistorySep 17, 2014 - 10:55 a.m.

CVE-2014-0568

2014-09-1710:55:00
NVD-CWE-noinfo
[email protected]
web.nvd.nist.gov
58
cve
2014
0568
adobe reader
acrobat
ntfs
junction attack
sandbox bypass

6.7 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.013 Low

EPSS

Percentile

85.9%

JSON

The NtSetInformationFile system call hook feature in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows allows attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via an NTFS junction attack.

Related

checkpoint_advisories 1
prion 2
cvelist 2
ubuntucve 1
cve 1
googleprojectzero 1
openvas 4
nessus 2
checkpoint_advisories
checkpoint_advisories
Adobe Acrobat and Reader Sandbox Bypass (APSB14-20; CVE-2014-0568)
2014-09-21 00:00:00
prion
prion
Design/Logic Flaw
2014-09-17 10:55:00
Race condition
2014-11-30 02:59:00
cvelist
cvelist
CVE-2014-0568
2014-09-17 10:00:00
CVE-2014-9150
2014-11-30 02:00:00
ubuntucve
ubuntucve
CVE-2014-0568
2014-09-17 00:00:00
cve
cve
CVE-2014-9150
2014-11-30 02:59:00
googleprojectzero
googleprojectzero
Windows 10^H^H Symbolic Link Mitigations
2015-08-25 00:00:00
openvas
openvas
Adobe Reader Multiple Vulnerabilities-01 (Sep 2014) - Windows
2014-09-19 00:00:00
Adobe Acrobat Multiple Vulnerabilities-01 (Sep 2014) - Windows
2014-09-19 00:00:00
Adobe Acrobat Multiple Vulnerabilities-01 (Sep 2014) - Mac OS X
2014-09-19 00:00:00
nessus
nessus
Adobe Acrobat < 10.1.12 / 11.0.09 Multiple Vulnerabilities (APSB14-20)
2014-09-16 00:00:00
Adobe Reader < 10.1.12 / 11.0.09 Multiple Vulnerabilities (APSB14-20)
2014-09-16 00:00:00

6.7 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.013 Low

EPSS

Percentile

85.9%

JSON
Related for CVE-2014-0568
checkpoint_advisories1prion2cvelist2ubuntucve1cve1googleprojectzero1openvas4nessus2