Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe library loading of browser related library extensions in the installer plugin. A successful exploitation could lead to arbitrary code execution.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/Digital-Editions/apsb17-20.html | Vendor Advisory |
http://www.securityfocus.com/bid/99024 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1038658 |
Configurations
Information
Published : 2017-06-20 10:29
Updated : 2019-10-02 17:03
NVD link : CVE-2017-3090
Mitre link : CVE-2017-3090
JSON object : View
CWE
CWE-427
Uncontrolled Search Path Element
Products Affected
adobe
- digital_editions