Blog

Wednesday 23 September 2009 - Adobe RoboHelp Server Arbitrary File Upload and Execute Vulnerability

By Harmony Security

TippingPoint's Zero Day Initiative (ZDI) has published an advisory for an arbitrary file upload vulnerability that leads to SYSTEM code execution in the Adobe RoboHelp Server which was discovered by Stephen Fewer of Harmony Security.

You can read the full ZDI advisory here:
http://www.zerodayinitiative.com/advisories/ZDI-09-066/

And the Adobe advisory here:
http://www.adobe.com/support/security/bulletins/apsb09-14.html

Labels:

Comments: 0

 

 

Bookmark and Share