CVE-2005-4708

Severity

72%

Complexity

39%

Confidentiality

165%

Adobe Macromedia MX 2004 products, Captivate, Contribute 2, Contribute 3, and eLicensing client install the Macromedia Licensing Service with the Users group permitted to configure the service, including the path to executable, which allows local users to execute arbitrary code as Local System.

Adobe Macromedia MX 2004 products, Captivate, Contribute 2, Contribute 3, and eLicensing client install the Macromedia Licensing Service with the Users group permitted to configure the service, including the path to executable, which allows local users to execute arbitrary code as Local System.

CVSS 2.0 Base Score 7.2. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:C/I:C/A:C).

Overview

First reported 19 years ago

2005-12-31 05:00:00

Last updated 6 years ago

2018-10-19 15:41:00

Affected Software

Adobe Captivate

アドビシステムズ Contribute 2

2

アドビシステムズ Contribute 3

3

Adobe Director

Adobe Dreamweaver 9.0 (CS3)

9.0

Adobe eLicensing

Adobe Fireworks 9.0

9.0

アドビシステムズ フラッシュプレーヤー

References

15654

1014158

1014159

1014160

1014161

1014162

1014163

1014164

1014165

1014166

http://www.cs.princeton.edu/~sudhakar/papers/winval.pdf

VU#953860

US Government Resource

http://www.macromedia.com/devnet/security/security_zone/mpsb05-04.html

Patch, Vendor Advisory

17248

20060131 Windows Access Control Demystified

13925

ADV-2005-0723

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.