CVE-2017-3092

Summary

Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe library loading of editor control library functions in the installer plugin. A successful exploitation could lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
n/aAdobe Digital Editions 4.5.4 and earlier.Adobe Digital Editions 4.5.4 and earlier.affected

Weaknesses

  • Insecure Library Loading (DLL hijacking)

ADP Enrichment

CVE Program Container

Additional References

References