Adobe eBook Reader Quota Restriction Bypass Vulnerability

vendor:

eBook Reader

by:

SecurityFocus

4.3

CVSS

MEDIUM

Bypass Restriction

287

CWE

Product Name: eBook Reader

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: YES

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Microsoft Windows

2002

Adobe eBook Reader Quota Restriction Bypass Vulnerability

Adobe eBook Reader is a client side application which is able to view Adobe eBooks, available for Microsoft Windows and Macintosh OS 9. It is possible to bypass some quota restrictions. Non-zero quotas on copying and printing content may be bypassed by repeatedly restoring certain files used to maintain state from backups.

Mitigation:

Ensure that the application is up to date with the latest version and patch.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/5273/info

Adobe eBook Reader is a client side application which is able to view Adobe eBooks, available for Microsoft Windows and Macintosh OS 9. eBooks are electronic books which provide some protection for content. Users may be able to view a book, but have limited publisher defined privileges to copy content.

It is possible to bypass some quota restrictions. Non-zero quotas on copying and printing content may be bypassed by repeatedly restoring certain files used to maintain state from backups.

This vulnerability has been reported in versions of eBook Reader for Microsoft Windows. It may, however, exist on other platforms.

Data\Vouchers\*.*
Data\GB.dbd
Data\Category.etb
Data\Library*.etb
Data\Library*.vld