CVE-2006-0525

CVE-2006-0525 affects multiple Adobe products (notably Photoshop CS2, Illustrator CS2, and Adobe Help Center) where a large number of .EXE and .DLL files are installed with write-access for the Everyone group. This local-privilege-escalation vulnerability allows bypassing protections via Trojan h...

CVE-2005-1842

Adobe Version Cue VCNative (VCNative) on Mac OS X (Version Cue 1.0/1.0.1; Creative Suite 1.0/1.3) uses a setuid root VCNative that writes log files with predictable names (e.g., VCNative-[pid].log) in the working directory. This enables a local attacker to perform a symlink attack that can overwr...

CVE-2005-1307

The CVE-2005-1307 entry concerns Adobe Version Cue on macOS, where the stopserver.sh and startserver.sh scripts use the current working directory to locate productname.sh. This path-handling flaw allows a local user to trigger execution of arbitrary code by placing scripts in a user-controlled di...

CVE-2005-1843

Adobe Version Cue VCNative in Version Cue 1.0/1.0.1 on macOS contains a design error in the -lib option that allows loading arbitrary libraries, leading to arbitrary code execution with root privileges. VCNative is a setuid root component; exploitation is local and requires loading a malicious li...