4.0.3

CVSS 9.3 - CRITICAL

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

adobe

critical

exploit available

NVD

Published: 2010-08-27

Updated: 2018-10-10

Summary

Untrusted search path vulnerability in Adobe On Location CS4 Build 315 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as an OLPROJ file. er: http://cwe.mitre.org/data/definitions/426.html 'CWE-426 - 'Untrusted Search Path Vulnerability'

Vulnerable Configurations

Part	Description	Count
Application	Adobe Adobe Onlocation CS4 4.0.1 Adobe Onlocation CS4 4.0.2 Adobe Onlocation CS4 4.0.3 Adobe Premiere PRO CS4 4.0.1 Adobe Premiere PRO CS4 4.1.0 Adobe Premiere PRO CS4 4.2.0 Adobe Premiere PRO CS4 4.2.1	7

Exploit-Db

description	Adobe On Location CS4 DLL Hijacking Exploit (ibfs32.dll). CVE-2010-3151. Local exploit for windows platform
file	exploits/windows/local/14772.c
id	EDB-ID:14772
last seen	2016-02-01
modified	2010-08-25
platform	windows
port
published	2010-08-25
reporter	Glafkos Charalambous
source	https://www.exploit-db.com/download/14772/
title	Adobe On Location CS4 DLL Hijacking Exploit ibfs32.dll
type	local

Summary

Vulnerable Configurations

Exploit-Db

References