Untrusted search path vulnerability in Adobe Reader before 9.4.2 (Linux)ID: oval:org.secpod.oval:def:379 | Date: (C)2011-03-11 (M)2022-10-10 |
Class: VULNERABILITY | Family: unix |
The host is installed with Adobe Reader and is prone to untrusted search path vulnerability. A flaw is present in Adobe Reader before 9.4.2, where the application does not directly specify the fully qualified path to a dynamic-linked library (DLL) when running on Microsoft Windows. Successful exploitation allows attacker to execute arbitrary code on the system via a specially-crafted library.