Adobe Version Cue CS3 Server for Mac Firewall Deactivation Weakness
BID:24027
Info
Adobe Version Cue CS3 Server for Mac Firewall Deactivation Weakness
| Bugtraq ID: | 24027 |
| Class: | Design Error |
| CVE: |
CVE-2007-2682 |
| Remote: | Yes |
| Local: | No |
| Published: | May 16 2007 12:00AM |
| Updated: | May 17 2007 04:18PM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
Adobe Creative Suite 3 Web Standard Adobe Creative Suite 3 Web Premium Adobe Creative Suite 3 Design Standard Adobe Creative Suite 3 Design Premium |
| Not Vulnerable: | |
Discussion
Adobe Version Cue CS3 Server for Mac Firewall Deactivation Weakness
Adobe Version Cue CS3 Server is prone to a weakness that results from a design error.
The application disables the personal firewall on Apple Mac OS X systems during installation, but fails to enable it after the installation procedure is complete.
An attacker could take advantage of this weakness to exploit other vulnerabilities or to carry out a variety of attacks against a computer.
This issue affects Adobe Version Cue CS3 Server (installed as part of Adobe Creative Suite 3 Design Premium, Design Standard, Web Premium, or Web Standard editions).
Adobe Version Cue CS3 Server is prone to a weakness that results from a design error.
The application disables the personal firewall on Apple Mac OS X systems during installation, but fails to enable it after the installation procedure is complete.
An attacker could take advantage of this weakness to exploit other vulnerabilities or to carry out a variety of attacks against a computer.
This issue affects Adobe Version Cue CS3 Server (installed as part of Adobe Creative Suite 3 Design Premium, Design Standard, Web Premium, or Web Standard editions).
Exploit / POC
Adobe Version Cue CS3 Server for Mac Firewall Deactivation Weakness
An exploit is not required.
An exploit is not required.
Solution / Fix
Adobe Version Cue CS3 Server for Mac Firewall Deactivation Weakness
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
Adobe Version Cue CS3 Server for Mac Firewall Deactivation Weakness
References:
References: