Adobe Version Cue Disables Mac OS X Firewall
|
|
SecurityTracker Alert ID: 1018075 |
|
SecurityTracker URL: http://securitytracker.com/id/1018075
|
|
CVE Reference:
CVE-2007-2682
(Links to External Site)
|
Date: May 17 2007
|
Impact:
Host/resource access via network
|
Vendor Confirmed: Yes
|
Version(s): CS3
|
Description:
A vulnerability was reported in Adobe Version Cue. The installation process disables the firewall.
When the product is installed on Mac OS X systems with the Mac OS X personal firewall enabled, the installer turns off the firewall.
The product is installed as part of Adobe Creative Suite 3 Design Premium, Design Standard, Web Premium, and Web Standard editions.
|
Impact:
A remote user can bypass the disabled firewall.
|
Solution:
No solution was available at the time of this entry.
The vendor has described a workaround in their advisory.
The Adobe advisory is available at:
http://www.adobe.com/support/security/bulletins/apsb07-11.html
|
Vendor URL: www.adobe.com/support/security/bulletins/apsb07-11.html (Links to External Site)
|
Cause:
State error
|
Underlying OS:
UNIX (OS X)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 16 May 2007 19:29:38 -0400
Subject: Workaround available for security vulnerability caused by installing Adobe Version Cue CS3 Server on some Mac systems
|
http://www.adobe.com/support/security/bulletins/apsb07-11.html
CVE-2007-2682
|
|
