Macromedia Dreamweaver eLicensing Function Lets Local Users Gain Elevated Privileges - SecurityTracker

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (Generic) > Macromedia Dreamweaver

Vendors: Macromedia

Macromedia Dreamweaver eLicensing Function Lets Local Users Gain Elevated Privileges

SecurityTracker Alert ID: 1014159

SecurityTracker URL: http://securitytracker.com/id/1014159

CVE Reference: CVE-2005-4708 (Links to External Site)

Updated: Nov 2 2008

Original Entry Date: Jun 9 2005

Impact: Execution of arbitrary code via local system, Root access via local system

Fix Available: Yes Vendor Confirmed: Yes

Description: A vulnerability was reported in the Macromedia eLicensing client activation code in Macromedia Dreamweaver. A local user can obtain elevated privileges.

A local user in the "Users" group can modify the 'path to executable' configuration setting in the 'Macromedia Licensing Service' settings to point to an alternate file containing arbitrary code. Then, when the service is activated, the arbitrary code will run with Local System privileges.

All versions of Macromedia MX 2004 products are affected, including Studio, Studio with Flash Professional, Flash Professional, Flash, FreeHand, Dreamweaver, Fireworks, and Director. Macromedia Captivate, Contribute 2, and Contribute 3 are also affected.

The vendor credits Macrovision, Adobe, and Autodesk with reporting this vulnerability.

Impact: A local user can execute arbitrary code with Local System privileges.

Solution: The vendor has issued a hotfix, available at:

http://download.macromedia.com/pub/security/licensing_installer_updater.exe

The vendor's advisory is available at:

http://www.macromedia.com/devnet/security/security_zone/mpsb05-04.html

Vendor URL: www.macromedia.com/go/mpsb05-04 (Links to External Site)

Cause: Access control error

Underlying OS: Windows (Any)

Message History: None.

Source Message Contents

Date: Thu, 9 Jun 2005 18:13:45 -0400
Subject: http://www.macromedia.com/go/mpsb05-04



> MPSB05-04 — Potential Security Risk with Macromedia eLicensing Client Activation Code

> Windows versions of the Macromedia installers and eLicensing client install a service
> with permissions that allow any member of the "Users" group to modify the service 
> settings. This may allow local users to obtain the permissions of the "Local System" 
> account.

Hotfix:

http://download.macromedia.com/pub/security/licensing_installer_updater.exe

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2013, SecurityGlobal.net LLC