Untrusted search path vulnerability in Adobe Illustrator CS4 14.0.0, CS5 15.0.1 and earlier, and possibly other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or aires.dll that is located in the same folder as an .ait or .eps file.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:18
Type | Values Removed | Values Added |
---|---|---|
References | () http://osvdb.org/67534 - | |
References | () http://secunia.com/advisories/41134 - Vendor Advisory | |
References | () http://www.adobe.com/support/security/bulletins/apsb10-29.html - | |
References | () http://www.exploit-db.com/exploits/14773/ - Exploit | |
References | () http://www.securityfocus.com/archive/1/513335/100/0/threaded - | |
References | () http://www.securitytracker.com/id?1024865 - | |
References | () http://www.vupen.com/english/advisories/2010/2198 - Vendor Advisory |
Information
Published : 2010-08-27 19:00
Updated : 2024-11-21 01:18
NVD link : CVE-2010-3152
Mitre link : CVE-2010-3152
CVE.ORG link : CVE-2010-3152
JSON object : View
Products Affected
adobe
- illustrator
CWE