N/A
CVE-2014-0568
The NtSetInformationFile system call hook feature in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows allows attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via an NTFS junction attack.
EPSS
5.4%
percentile 90.2%
Affected tracked apps
Vulnerable CPE configurations
| Vendor | Product | Platform | Versions | CPE 2.3 URI |
|---|---|---|---|---|
| adobe | acrobat_reader | Windows | — | cpe:2.3:a:adobe:acrobat_reader:11.0.5:-:*:*:*:windows:*:* |