CVE-2007-5666

Untrusted search path vulnerability in Adobe Reader and Acrobat 8.1.1 and earlier allows local users to execute arbitrary code via a malicious Security Provider library in the reader's current working directory. NOTE: this issue might be subsumed by CVE-2008-0655.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-02-12 19:00

Updated : 2024-02-04 17:13


NVD link : CVE-2007-5666

Mitre link : CVE-2007-5666

CVE.ORG link : CVE-2007-5666


JSON object : View

Products Affected

adobe

  • acrobat
  • acrobat_reader
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')