What is the severity of CVE-2006-3452?

CVE-2006-3452 has a high severity rating due to the risk of privilege escalation for local users.

How do I fix CVE-2006-3452?

To fix CVE-2006-3452, upgrade Adobe Reader and Acrobat to version 6.0.5 or later.

What software versions are affected by CVE-2006-3452?

CVE-2006-3452 affects Adobe Reader and Acrobat versions 6.0.4 and earlier on Mac OSX.

Can CVE-2006-3452 be exploited by remote attackers?

CVE-2006-3452 cannot be exploited remotely as it requires local access to the affected system.

What types of privileges can be gained through CVE-2006-3452?

CVE-2006-3452 allows local users to gain elevated privileges by overwriting program files.

Vulnerability/
CVE-2006-3452

medium

4.6

CWE

NVD-CWE-Other

12/7/2006

7/8/2024

CVE-2006-3452

First published: Wed Jul 12 2006(Updated: )

Adobe Reader and Acrobat 6.0.4 and earlier, on Mac OSX, has insecure file and directory permissions, which allows local users to gain privileges by overwriting program files.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Adobe Acrobat Reader	=4.0.5a
Adobe Acrobat Reader	=6.0.3
Adobe Acrobat Reader	=6.0
Adobe Acrobat Reader	=6.0.1
Adobe Acrobat Reader	=6.0.2
Adobe Acrobat Reader	=4.0.5
Adobe Acrobat Reader	=6.0
Adobe Acrobat Reader	=6.0.3
Adobe Acrobat Reader	=3.0
Adobe Acrobat Reader	=3.0
Adobe Acrobat Reader	=4.0
Adobe Acrobat Reader	=4.0.5c
Adobe Acrobat Reader	=5.0.5
Adobe Acrobat Reader	=4.0.5
Adobe Acrobat Reader	=5.0.5
Adobe Acrobat Reader	=4.0.5c
Adobe Acrobat Reader	=5.0.10
Adobe Acrobat Reader	=4.0.5a
Adobe Acrobat Reader	<=6.0.4
Adobe Acrobat Reader	=5.0.10
Adobe Acrobat Reader	=3.1
Adobe Acrobat Reader	=5.0
Adobe Acrobat Reader	=6.0.2
Adobe Acrobat Reader	=5.1
Adobe Acrobat Reader	=5.0
Adobe Acrobat Reader	=6.0.1
Adobe Acrobat Reader	<=6.0.4
Adobe Acrobat Reader	=4.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-3452?
CVE-2006-3452 has a high severity rating due to the risk of privilege escalation for local users.
How do I fix CVE-2006-3452?
To fix CVE-2006-3452, upgrade Adobe Reader and Acrobat to version 6.0.5 or later.
What software versions are affected by CVE-2006-3452?
CVE-2006-3452 affects Adobe Reader and Acrobat versions 6.0.4 and earlier on Mac OSX.
Can CVE-2006-3452 be exploited by remote attackers?
CVE-2006-3452 cannot be exploited remotely as it requires local access to the affected system.
What types of privileges can be gained through CVE-2006-3452?
CVE-2006-3452 allows local users to gain elevated privileges by overwriting program files.

agent/type
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
agent/remedy
agent/weakness
agent/author
agent/references
agent/severity
agent/softwarecombine
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/tags
agent/first-publish-date
agent/event
agent/source
vendor/adobe
canonical/adobe acrobat reader
version/adobe acrobat reader/4.0.5a
version/adobe acrobat reader/6.0.3
version/adobe acrobat reader/6.0
version/adobe acrobat reader/6.0.1
version/adobe acrobat reader/6.0.2
version/adobe acrobat reader/4.0.5
version/adobe acrobat reader/3.0
version/adobe acrobat reader/4.0
version/adobe acrobat reader/4.0.5c
version/adobe acrobat reader/5.0.5
version/adobe acrobat reader/5.0.10
version/adobe acrobat reader/6.0.4
version/adobe acrobat reader/3.1
version/adobe acrobat reader/5.0
version/adobe acrobat reader/5.1

Frequently Asked Questions

What is the severity of CVE-2006-3452?
CVE-2006-3452 has a high severity rating due to the risk of privilege escalation for local users.
How do I fix CVE-2006-3452?
To fix CVE-2006-3452, upgrade Adobe Reader and Acrobat to version 6.0.5 or later.
What software versions are affected by CVE-2006-3452?
CVE-2006-3452 affects Adobe Reader and Acrobat versions 6.0.4 and earlier on Mac OSX.
Can CVE-2006-3452 be exploited by remote attackers?
CVE-2006-3452 cannot be exploited remotely as it requires local access to the affected system.
What types of privileges can be gained through CVE-2006-3452?
CVE-2006-3452 allows local users to gain elevated privileges by overwriting program files.

CVE-2006-3452

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-3452?

How do I fix CVE-2006-3452?

What software versions are affected by CVE-2006-3452?

Can CVE-2006-3452 be exploited by remote attackers?

What types of privileges can be gained through CVE-2006-3452?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2006-3452?

How do I fix CVE-2006-3452?

What software versions are affected by CVE-2006-3452?

Can CVE-2006-3452 be exploited by remote attackers?

What types of privileges can be gained through CVE-2006-3452?