Adobe Acrobat and Reader 'msiexec.exe' Search Path Remote Arbitrary Code Execution Vulnerability

Bugtraq ID:	52952
Class:	Design Error
CVE:	CVE-2012-0776
Remote:	Yes
Local:	No
Published:	Apr 10 2012 12:00AM
Updated:	Jun 20 2013 09:41AM
Credit:	Mitja Kolsek of ACROS Security
Vulnerable:	Gentoo Linux Adobe Reader 10.1.2 Adobe Reader 10.1.1 Adobe Reader 9.4.7 Adobe Reader 9.4.6 Adobe Reader 9.3.4 Adobe Reader 9.3.3 Adobe Reader 9.3.2 Adobe Reader 9.3.1 Adobe Reader 9.1.3 Adobe Reader 9.1.2 Adobe Reader 9.1.1 Adobe Reader 9.5 Adobe Reader 9.4.5 Adobe Reader 9.4.4 Adobe Reader 9.4.3 Adobe Reader 9.4.2 Adobe Reader 9.4.1 Adobe Reader 9.4 Adobe Reader 9.3 Adobe Reader 9.2 Adobe Reader 9.1 Adobe Reader 9 Adobe Reader 9 Adobe Reader 10.1 Adobe Reader 10.0.3 Adobe Reader 10.0.2 Adobe Reader 10.0.1 Adobe Reader 10.0 Adobe Acrobat Standard 10.1.2 Adobe Acrobat Standard 10.1.1 Adobe Acrobat Standard 9.4.7 Adobe Acrobat Standard 9.4.6 Adobe Acrobat Standard 9.3.4 Adobe Acrobat Standard 9.3.3 Adobe Acrobat Standard 9.3.2 Adobe Acrobat Standard 9.3.1 Adobe Acrobat Standard 9.1.3 Adobe Acrobat Standard 9.1.2 Adobe Acrobat Standard 9.5 Adobe Acrobat Standard 9.4.5 Adobe Acrobat Standard 9.4.4 Adobe Acrobat Standard 9.4.3 Adobe Acrobat Standard 9.4.2 Adobe Acrobat Standard 9.4.1 Adobe Acrobat Standard 9.4 Adobe Acrobat Standard 9.3 Adobe Acrobat Standard 9.2 Adobe Acrobat Standard 9.1 Adobe Acrobat Standard 9 Adobe Acrobat Standard 10.1 Adobe Acrobat Standard 10.0.3 Adobe Acrobat Standard 10.0.2 Adobe Acrobat Standard 10.0.1 Adobe Acrobat Standard 10.0 Adobe Acrobat Professional 10.1.2 Adobe Acrobat Professional 10.1.1 Adobe Acrobat Professional 9.4.7 Adobe Acrobat Professional 9.4.6 Adobe Acrobat Professional 9.3.4 Adobe Acrobat Professional 9.3.3 Adobe Acrobat Professional 9.3.2 Adobe Acrobat Professional 9.3.1 Adobe Acrobat Professional 9.1.3 Adobe Acrobat Professional 9.1.2 Adobe Acrobat Professional 9.5 Adobe Acrobat Professional 9.4.5 Adobe Acrobat Professional 9.4.4 Adobe Acrobat Professional 9.4.3 Adobe Acrobat Professional 9.4.2 Adobe Acrobat Professional 9.4.1 Adobe Acrobat Professional 9.4 Adobe Acrobat Professional 9.3 Adobe Acrobat Professional 9.2 Adobe Acrobat Professional 9.1 Adobe Acrobat Professional 9 Extended Adobe Acrobat Professional 9 Adobe Acrobat Professional 10.1 Adobe Acrobat Professional 10.0.3 Adobe Acrobat Professional 10.0.2 Adobe Acrobat Professional 10.0.1 Adobe Acrobat Professional 10.0 Adobe Acrobat 10.1.2 Adobe Acrobat 10.1.1 Adobe Acrobat 9.4.7 Adobe Acrobat 9.4.6 Adobe Acrobat 9.3.3 Adobe Acrobat 9.3.2 Adobe Acrobat 9.3.1 Adobe Acrobat 9.1.1 Adobe Acrobat 8.2.4 Adobe Acrobat 9.5 Adobe Acrobat 9.4.5 Adobe Acrobat 9.4.4 Adobe Acrobat 9.4.3 Adobe Acrobat 9.4.2 Adobe Acrobat 9.4.1 Adobe Acrobat 9.4 Adobe Acrobat 9.3 Adobe Acrobat 9.2 Adobe Acrobat 9 Adobe Acrobat 10.1 Adobe Acrobat 10.0.3 Adobe Acrobat 10.0.2 Adobe Acrobat 10.0.1 Adobe Acrobat 10.0
Not Vulnerable:	Adobe Reader 10.1.3 Adobe Reader 9.5.1 Adobe Acrobat Standard 10.1.3 Adobe Acrobat Standard 9.5.1 Adobe Acrobat Professional 10.1.3 Adobe Acrobat Professional 9.5.1 Adobe Acrobat 10.1.3 Adobe Acrobat 9.5.1

Adobe Acrobat and Reader 'msiexec.exe' Search Path Remote Arbitrary Code Execution Vulnerability

Adobe Acrobat and Reader are prone to an arbitrary code-execution vulnerability.

Attackers can exploit this issue remotely by placing the files in a remotely accessible SMB or WebDAV share location.

Successful exploits will compromise the application in the context of the currently logged-in user.

Adobe Acrobat and Reader 'msiexec.exe' Search Path Remote Arbitrary Code Execution Vulnerability

Videos demonstrating the exploit are available. Please see the references for more information.

Adobe Acrobat and Reader 'msiexec.exe' Search Path Remote Arbitrary Code Execution Vulnerability

Solution:
Updates are available. Please see the references for more information.