Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Race condition in the MoveFileEx call hook feature in Adobe Reader and Acrobat 11.x before 11.0.09 on Windows allows attackers to bypass a sandbox protection mechanism, and consequently write to files in arbitrary locations, via an NTFS junction attack, a similar issue to CVE-2014-0568.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Adobe Reader和Acrobat 竞争条件漏洞
Vulnerability Description
Adobe Reader和Acrobat都是美国奥多比(Adobe)公司的产品。Adobe Reader是一款免费的PDF文件阅读器,Acrobat是一款PDF文件编辑和转换工具。 基于Windows平台的Adobe Reader和Acrobat 11.0.09之前11.x版本的‘MoveFileEx call hook’函数中存在竞争条件漏洞。攻击者可通过实施NTFS连接攻击利用该漏洞绕过沙箱保护机制,在任意位置写入文件。
CVSS Information
N/A
Vulnerability Type
N/A