CVE-2010-1296
published 2010-05-27CVE-2010-1296: Multiple buffer overflows in Adobe Photoshop CS4 before 11.0.2 allow user-assisted remote attackers to execute arbitrary code via a crafted (1) .ASL, (2) .ABR…
PriorityP357critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
19.64%
97.1th percentile
Multiple buffer overflows in Adobe Photoshop CS4 before 11.0.2 allow user-assisted remote attackers to execute arbitrary code via a crafted (1) .ASL, (2) .ABR, or (3) .GRD file.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | photoshop_cs4 | <= 11.0.1 | — |
| adobe | photoshop_cs4 | — | — |
| adobe | photoshop_elements | <= 8.0 | — |
| adobe | photoshop_elements | — | — |
| adobe | photoshop_elements | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gv25-3976-7f98: Multiple buffer overflows in Adobe Photoshop Elements 8
ghsa_unreviewed·2022-05-17·CVSS 9.3
CVE-2011-2443 [CRITICAL] CWE-119 GHSA-gv25-3976-7f98: Multiple buffer overflows in Adobe Photoshop Elements 8
Multiple buffer overflows in Adobe Photoshop Elements 8.0 and earlier allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted (1) .grd or (2) .abr file, a related issue to CVE-2010-1296.
GHSA
GHSA-8x83-5ph9-f7w9: Multiple buffer overflows in Adobe Photoshop CS4 before 11
ghsa_unreviewed·2022-05-02
CVE-2010-1296 [HIGH] CWE-119 GHSA-8x83-5ph9-f7w9: Multiple buffer overflows in Adobe Photoshop CS4 before 11
Multiple buffer overflows in Adobe Photoshop CS4 before 11.0.2 allow user-assisted remote attackers to execute arbitrary code via a crafted (1) .ASL, (2) .ABR, or (3) .GRD file.
Suricata
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid DELETE
suricata·2010-07-30·CVSS 7.5
CVE-2007-1296 [HIGH] ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid DELETE
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid DELETE
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid DELETE"; flow:established,to_server; http.uri; content:"/postingdetails.php?"; nocase; content:"postingid="; nocase; content:"DELETE"; nocase; content:"FROM"; nocase; distance:0; reference:cve,CVE-2007-1296; reference:url,www.milw0rm.com/exploits/3410; classtype:web-application-attack; sid:2004544; rev:10; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_10, mitre_tactic_id TA0001, mitre_ta
Suricata
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid UPDATE
suricata·2010-07-30·CVSS 7.5
CVE-2007-1296 [HIGH] ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid UPDATE
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid UPDATE
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid UPDATE"; flow:established,to_server; http.uri; content:"/postingdetails.php?"; nocase; content:"postingid="; nocase; content:"UPDATE"; nocase; content:"SET"; nocase; distance:0; reference:cve,CVE-2007-1296; reference:url,www.milw0rm.com/exploits/3410; classtype:web-application-attack; sid:2004546; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_14, mitre_tactic_id TA0001, mitre_tact
Suricata
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid ASCII
suricata·2010-07-30·CVSS 7.5
CVE-2007-1296 [HIGH] ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid ASCII
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid ASCII
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid ASCII"; flow:established,to_server; http.uri; content:"/postingdetails.php?"; nocase; content:"postingid="; nocase; content:"ASCII("; nocase; content:"SELECT"; nocase; distance:0; reference:cve,CVE-2007-1296; reference:url,www.milw0rm.com/exploits/3410; classtype:web-application-attack; sid:2004545; rev:10; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_10, mitre_tactic_id TA0001, mitre_ta
Suricata
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid UNION SELECT
suricata·2010-07-30·CVSS 7.5
CVE-2007-1296 [HIGH] ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid UNION SELECT
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid UNION SELECT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid UNION SELECT"; flow:established,to_server; http.uri; content:"/postingdetails.php?"; nocase; content:"postingid="; nocase; content:"UNION"; nocase; content:"SELECT"; nocase; distance:0; reference:cve,CVE-2007-1296; reference:url,www.milw0rm.com/exploits/3410; classtype:web-application-attack; sid:2004542; rev:10; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_10, mitre_tactic_id TA0
Suricata
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid INSERT
suricata·2010-07-30·CVSS 7.5
CVE-2007-1296 [HIGH] ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid INSERT
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid INSERT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid INSERT"; flow:established,to_server; http.uri; content:"/postingdetails.php?"; nocase; content:"postingid="; nocase; content:"INSERT"; nocase; content:"INTO"; nocase; distance:0; reference:cve,CVE-2007-1296; reference:url,www.milw0rm.com/exploits/3410; classtype:web-application-attack; sid:2004543; rev:10; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_10, mitre_tactic_id TA0001, mitre_ta
Suricata
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid SELECT
suricata·2010-07-30·CVSS 7.5
CVE-2007-1296 [HIGH] ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid SELECT
ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid SELECT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS AJ Classifieds SQL Injection Attempt -- postingdetails.php postingid SELECT"; flow:established,to_server; http.uri; content:"/postingdetails.php?"; nocase; content:"postingid="; nocase; content:"SELECT"; nocase; content:"FROM"; nocase; distance:1; reference:cve,CVE-2007-1296; reference:url,www.milw0rm.com/exploits/3410; classtype:web-application-attack; sid:2004541; rev:11; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_13, mitre_tactic_id TA0001, mitre_ta
Exploit-DB
Adobe Photoshop CS4 Extended 11.0 - '.GRD' File Handling Remote Buffer Overflow (PoC)
exploitdb·2010-05-26
CVE-2010-1296 Adobe Photoshop CS4 Extended 11.0 - '.GRD' File Handling Remote Buffer Overflow (PoC)
Adobe Photoshop CS4 Extended 11.0 - '.GRD' File Handling Remote Buffer Overflow (PoC)
---
/*
Title:
Adobe Photoshop CS4 Extended 11.0 GRD File Handling Remote Buffer Overflow PoC
Summary: The Adobe® Photoshop® family of products is the ultimate playground for
bringing out the best in your digital images, transforming them into anything you
can imagine and showcasing them in extraordinary ways.
Description: Adobe Photoshop CS4 Extended suffers from a buffer overflow vulnerability
when dealing with .GRD (gradients) format file. The application failz to sanitize the
user input resulting in a memory corruption, overwriting several memory registers which
can aid the atacker to gain the power of executing arbitrary code or denial of service.
Vendor:
Adobe Systems Incorporated
Product Web
Exploit-DB
Adobe Photoshop CS4 Extended 11.0 - '.ASL' File Handling Remote Buffer Overflow (PoC)
exploitdb·2010-05-26
CVE-2010-1296 Adobe Photoshop CS4 Extended 11.0 - '.ASL' File Handling Remote Buffer Overflow (PoC)
Adobe Photoshop CS4 Extended 11.0 - '.ASL' File Handling Remote Buffer Overflow (PoC)
---
/*
Title:
Adobe Photoshop CS4 Extended 11.0 ASL File Handling Remote Buffer Overflow PoC
Summary: The Adobe® Photoshop® family of products is the ultimate playground for
bringing out the best in your digital images, transforming them into anything you
can imagine and showcasing them in extraordinary ways.
Description: Adobe Photoshop CS4 Extended suffers from a buffer overflow vulnerability
when dealing with .ASL (styles) format file. The application failz to sanitize the user
input resulting in a memory corruption, overwriting several memory registers which can
aid the atacker to gain the power of executing arbitrary code or denial of service.
Vendor:
Adobe Systems Incorporated
Product Web Pa
Exploit-DB
Adobe Photoshop CS4 Extended 11.0 - '.ABR' File Handling Remote Buffer Overflow (PoC)
exploitdb·2010-05-26
CVE-2010-1296 Adobe Photoshop CS4 Extended 11.0 - '.ABR' File Handling Remote Buffer Overflow (PoC)
Adobe Photoshop CS4 Extended 11.0 - '.ABR' File Handling Remote Buffer Overflow (PoC)
---
#!/usr/bin/perl
#
# Title:
# Adobe Photoshop CS4 Extended 11.0 ABR File Handling Remote Buffer Overflow PoC
#
#
# Summary: The Adobe® Photoshop® family of products is the ultimate playground for
# bringing out the best in your digital images, transforming them into anything you
# can imagine and showcasing them in extraordinary ways.
#
# Description: Adobe Photoshop CS4 Extended suffers from a buffer overflow vulnerability
# when dealing with .ABR (brushes) format file. The application failz to sanitize the
# user input resulting in a memory corruption, overwriting several memory registers which
# can aid the atacker to gain the power of executing arbitrary code or denial of service.
#
# Vendor:
# A
No writeups or analysis indexed.
http://www.adobe.com/support/security/bulletins/apsb10-13.htmlhttp://www.exploit-db.com/exploits/12751http://www.exploit-db.com/exploits/12752http://www.exploit-db.com/exploits/12753http://www.securityfocus.com/bid/40389http://www.securitytracker.com/id?1024042http://www.zeroscience.mk/codes/psbrush_bof.txthttp://www.zeroscience.mk/codes/psgradient_bof.txthttp://www.zeroscience.mk/codes/psstyle_bof.txthttp://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4938.phphttp://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4939.phphttp://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4940.phphttps://exchange.xforce.ibmcloud.com/vulnerabilities/58888http://www.adobe.com/support/security/bulletins/apsb10-13.htmlhttp://www.exploit-db.com/exploits/12751http://www.exploit-db.com/exploits/12752http://www.exploit-db.com/exploits/12753http://www.securityfocus.com/bid/40389http://www.securitytracker.com/id?1024042http://www.zeroscience.mk/codes/psbrush_bof.txthttp://www.zeroscience.mk/codes/psgradient_bof.txthttp://www.zeroscience.mk/codes/psstyle_bof.txthttp://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4938.phphttp://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4939.phphttp://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4940.phphttps://exchange.xforce.ibmcloud.com/vulnerabilities/58888
2010-05-27
Published