Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.4
CVSSv2

CVE-2014-9150

Published: 30/11/2014 Updated: 17/12/2014
CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10
VMScore: 570
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P
Subscribe to Acrobat Reader

Vulnerability Summary

Race condition in the MoveFileEx call hook feature in Adobe Reader and Acrobat 11.x prior to 11.0.09 on Windows allows malicious users to bypass a sandbox protection mechanism, and consequently write to files in arbitrary locations, via an NTFS junction attack, a similar issue to CVE-2014-0568.

Vulnerable Product Search on Vulmon Subscribe to Product

adobe acrobat_reader 11.0.6

adobe acrobat_reader

adobe acrobat_reader 11.0

adobe acrobat_reader 11.0.1

adobe acrobat_reader 11.0.2

adobe acrobat_reader 11.0.3

adobe acrobat_reader 11.0.4

adobe acrobat_reader 11.0.5

adobe acrobat_reader 11.0.7

adobe acrobat 11.0

adobe acrobat 11.0.2

adobe acrobat 11.0.4

adobe acrobat 11.0.5

adobe acrobat 11.0.6

adobe acrobat 11.0.7

adobe acrobat 11.0.1

adobe acrobat 11.0.3

adobe acrobat

References

CWE-362https://code.google.com/p/google-security-research/issues/detail?id=103http://helpx.adobe.com/security/products/reader/apsb14-28.htmlhttps://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-1183hard-codedCVE-2024-28254CVE-2023-43790buffer overflowbypassCVE-2024-32633CVE-2024-1874CVE-2024-23558
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook