Security Advisory

CVE-2014-0568

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-09-17 10:00:00

Last updated 2024-08-06 09:20:19

Assigner adobe

State PUBLISHED

Description

The NtSetInformationFile system call hook feature in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows allows attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via an NTFS junction attack.

← Browse all CVEs View on cve.org ↗