Adobe Campaign is prone to an unspecified security-bypass vulnerability.
Attackers can exploit this issue to bypass security restrictions and perform unauthorized actions; other attacks are also possible.
Adobe Campaign 16.4 Build 8770 and prior versions are vulnerable.
Information
Bugtraq ID: 97552Class: Design Error
CVE: CVE-2017-2989
Remote: Yes
Local: No
Published: Apr 11 2017 12:00AM
Updated: Apr 14 2017 12:03AM
Credit: LocalTapiola Bug Bounty Program and Avaus Marketing Innovations
Vulnerable: Adobe Campaign 6.11 Build 8770
Adobe Campaign 6.11 Build 8664
Adobe Campaign 6.11 Build 8653
Adobe Campaign 6.11 Build 8640
Adobe Campaign 6.11 Build 8622
Adobe Campaign 6.11 Build 8612
Adobe Campaign 6.11 Build 8601
Adobe Campaign 6.11 Build 8591
Adobe Campaign 6.11 Build 8580
Adobe Campaign 6.11 Build 8571
Adobe Campaign 6.11 Build 8563
Adobe Campaign 6.11 Build 8552
Not Vulnerable: Adobe Campaign 6.11 Build 8795
References:
- Adobe Campaign Release Notes (Adobe)
- Adobe Homepage (Adobe)
- APSB17-09: Security update available for Adobe Campaign (Adobe)