{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-01-07T00:00:00", "descriptions": [{"lang": "en", "value": "Untrusted search path vulnerability in Adobe Download Manager, as used in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X, allows local users to gain privileges via a crafted resource in an unspecified directory."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-05T14:57:01", "orgId": "078d4453-3bcd-4900-85e6-15281da43538", "shortName": "adobe"}, "references": [{"name": "1034646", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1034646"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://helpx.adobe.com/security/products/acrobat/apsb16-02.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@adobe.com", "ID": "CVE-2016-0947", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Untrusted search path vulnerability in Adobe Download Manager, as used in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X, allows local users to gain privileges via a crafted resource in an unspecified directory."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1034646", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1034646"}, {"name": "https://helpx.adobe.com/security/products/acrobat/apsb16-02.html", "refsource": "CONFIRM", "url": "https://helpx.adobe.com/security/products/acrobat/apsb16-02.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T22:38:41.107Z"}, "title": "CVE Program Container", "references": [{"name": "1034646", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1034646"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://helpx.adobe.com/security/products/acrobat/apsb16-02.html"}]}]}, "cveMetadata": {"assignerOrgId": "078d4453-3bcd-4900-85e6-15281da43538", "assignerShortName": "adobe", "cveId": "CVE-2016-0947", "datePublished": "2016-01-14T02:00:00", "dateReserved": "2015-12-22T00:00:00", "dateUpdated": "2024-08-05T22:38:41.107Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*", "matchCriteriaId": "DDDDFD6D-1CEF-42E6-9FB4-BFA3DE675CA3", "versionEndIncluding": "11.0.13", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "2643209D-1A36-4E2F-836A-0521F6932A99", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "51C67ABD-5800-46DD-9E81-2A586698BC90", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "F9FF4675-A9FF-4B0F-BBC6-D29B6324D27D", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "76CE9DE1-FFB6-483B-A76C-38819C1407B9", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "AA71918B-F2B2-442B-AA12-3E16759B0674", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "15ACC0AD-EFB5-4C96-888A-3E8A1C35E64B", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "3BBFA7D7-1A9E-4751-A14A-62C2DB2672A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "106D9571-59BF-4056-B7CD-F70FC3F1B73B", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "8FD7CF1E-CF36-4291-B17F-67A070CBE2EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "71DB447D-5C36-458E-BD07-4FC3CB26FDCE", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.10:*:*:*:*:*:*:*", "matchCriteriaId": "80D16772-02BF-4046-9C47-A25D07DB7F70", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.11:*:*:*:*:*:*:*", "matchCriteriaId": "FAF0D04A-B95D-4B50-ACE8-DA3AA6ED7C54", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.12:*:*:*:*:*:*:*", "matchCriteriaId": "812B6806-B488-4D8C-B942-9F3174ECD85D", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*", "matchCriteriaId": "0FF5999A-9D12-4CDD-8DE9-A89C10B2D574", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*", "matchCriteriaId": "C58D9C69-59AC-4C31-8813-DF07C322568E", "versionEndIncluding": "15.006.30097", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*", "matchCriteriaId": "000C0EBD-E41C-471E-B71A-5CD418594EF5", "versionEndIncluding": "15.009.20077", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*", "matchCriteriaId": "91134715-4C87-4F5A-9B5A-11A6B66ED00A", "versionEndIncluding": "15.006.30097", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*", "matchCriteriaId": "C4B9A613-9E00-4D4E-8780-471E913CA60D", "versionEndIncluding": "15.009.20077", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*", "matchCriteriaId": "0FF5999A-9D12-4CDD-8DE9-A89C10B2D574", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*", "matchCriteriaId": "AAB3A419-D57B-4E1E-83D3-34A2B73448A6", "versionEndIncluding": "11.0.13", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "829ED66F-149C-4EC5-B9F1-5DD678AF40DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "E72C3C61-511E-4977-B029-70277C68E24D", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "47478166-EE66-4837-A6C0-0A519F9EDD26", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "C4E8E909-3277-429B-9CB2-973A606BB4A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "D1F0F0C4-0008-452E-99F5-6264465C3FFC", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "E554FA7F-4F54-4BDD-80EB-0566805D995B", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "A48CD244-BCF6-4D0F-B07D-44304493BCFD", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "86A84BB0-85D3-47E8-BC90-291E8C2CCEEC", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "37283AD4-4B3F-48AB-A3DD-C33871CCB5DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "85C3571E-43F0-41D3-840F-A811B88FFFC1", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.10:*:*:*:*:*:*:*", "matchCriteriaId": "D1D97472-841C-471C-8668-AF96A41A1B7F", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.11:*:*:*:*:*:*:*", "matchCriteriaId": "83BEA317-8DD4-4C4D-ADD1-17EA314F31DD", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.12:*:*:*:*:*:*:*", "matchCriteriaId": "78D35D0E-E63A-4495-8318-45177838A40C", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*", "matchCriteriaId": "0FF5999A-9D12-4CDD-8DE9-A89C10B2D574", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Untrusted search path vulnerability in Adobe Download Manager, as used in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X, allows local users to gain privileges via a crafted resource in an unspecified directory."}, {"lang": "es", "value": "Vulnerabilidad de b\u00fasqueda de ruta no confiable en Adobe Download Manager, como se utiliza en Adobe Reader y Acrobat en versiones anteriores a 11.0.14, Acrobat y Acrobat Reader DC Classic en versiones anteriores a 15.006.30119 y Acrobat y Acrobat Reader DC Continuous en versiones anteriores a 15.010.20056 en Windows y OS X, permite a usuarios locales obtener privilegios a trav\u00e9s de un recurso manipulado en un directorio no especificado."}], "evaluatorComment": "<a href=\"http://cwe.mitre.org/data/definitions/426.html\">CWE-426: Untrusted Search Path</a>", "id": "CVE-2016-0947", "lastModified": "2016-12-07T23:42:22.320", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-01-14T05:59:15.800", "references": [{"source": "psirt@adobe.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1034646"}, {"source": "psirt@adobe.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://helpx.adobe.com/security/products/acrobat/apsb16-02.html"}], "sourceIdentifier": "psirt@adobe.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}