CVE-2007-1279 - Unspecified vulnerability in the installer for Adobe Bridge 1.0.3 update for Apple OS X, when patchi

CVE-2007-1279

Summary

Unspecified vulnerability in the installer for Adobe Bridge 1.0.3 update for Apple OS X, when patching with desktop management tools, allows local users to gain privileges via unspecified vectors during installation of the update by a different user who has administrative privileges.

References

Vulnerable Configurations

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:bridge:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:bridge:1.0.3:*:*:*:*:*:*:*

CVSS

Base:	7.2 (as of 29-07-2017 - 01:30)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	23404
confirm	http://www.adobe.com/support/security/bulletins/apsb07-09.html
osvdb	34896
sectrack	1017900
secunia	24854
vupen	ADV-2007-1342
xf	bridge-unspecified-privilege-escalation(33570)

Last major update

29-07-2017 - 01:30

Published

11-04-2007 - 22:19

Last modified

29-07-2017 - 01:30