CVE-2010-3127
published 2010-08-26CVE-2010-3127: Untrusted search path vulnerability in Adobe PhotoShop CS2 through CS5 allows local users, and possibly remote attackers, to execute arbitrary code and conduct…
PriorityP349critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
13.85%
96.1th percentile
Untrusted search path vulnerability in Adobe PhotoShop CS2 through CS5 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or Wintab32.dll that is located in the same folder as a PSD or other file that is processed by PhotoShop. NOTE: some of these details are obtained from third party information.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | photoshop | — | — |
| adobe | photoshop | — | — |
| adobe | photoshop | — | — |
| adobe | photoshop | — | — |
| adobe | photoshop | — | — |
| adobe | photoshop | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://blog.zoller.lu/2010/08/cve-2010-xn-loadlibrarygetprocaddress.htmlhttp://secunia.com/advisories/41060http://www.exploit-db.com/exploits/14741http://www.vupen.com/english/advisories/2010/2170https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6778http://blog.zoller.lu/2010/08/cve-2010-xn-loadlibrarygetprocaddress.htmlhttp://secunia.com/advisories/41060http://www.exploit-db.com/exploits/14741http://www.vupen.com/english/advisories/2010/2170https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6778
2010-08-26
Published