Adobe Campaign CVE-2017-2989 Unspecified Security Bypass Vulnerability

Adobe Campaign is prone to an unspecified security-bypass vulnerability.

Attackers can exploit this issue to bypass security restrictions and perform unauthorized actions; other attacks are also possible.

Adobe Campaign 16.4 Build 8770 and prior versions are vulnerable.

Information

Bugtraq ID: 97552
Class: Design Error
CVE: CVE-2017-2989

Remote: Yes
Local: No
Published: Apr 11 2017 12:00AM
Updated: Apr 14 2017 12:03AM
Credit: LocalTapiola Bug Bounty Program and Avaus Marketing Innovations
Vulnerable: Adobe Campaign 6.11 Build 8770
Adobe Campaign 6.11 Build 8664
Adobe Campaign 6.11 Build 8653
Adobe Campaign 6.11 Build 8640
Adobe Campaign 6.11 Build 8622
Adobe Campaign 6.11 Build 8612
Adobe Campaign 6.11 Build 8601
Adobe Campaign 6.11 Build 8591
Adobe Campaign 6.11 Build 8580
Adobe Campaign 6.11 Build 8571
Adobe Campaign 6.11 Build 8563
Adobe Campaign 6.11 Build 8552

Not Vulnerable: Adobe Campaign 6.11 Build 8795

References:

Adobe Campaign Release Notes (Adobe)
Adobe Homepage (Adobe)
APSB17-09: Security update available for Adobe Campaign (Adobe)

Source: www.securityfocus.com

Exploit Collector

Search Exploit

Adobe Campaign CVE-2017-2989 Unspecified Security Bypass Vulnerability

Information