Untrusted search path vulnerability in Adobe PhotoShop CS2 through CS5 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or Wintab32.dll that is located in the same folder as a PSD or other file that is processed by PhotoShop. NOTE: some of these details are obtained from third party information.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Photoshop | Adobe | 9.0 (including) | 9.0 (including) |
| Photoshop | Adobe | 9.0.1 (including) | 9.0.1 (including) |
| Photoshop | Adobe | 9.0.2 (including) | 9.0.2 (including) |
| Photoshop | Adobe | 10.0 (including) | 10.0 (including) |
| Photoshop | Adobe | 11.0 (including) | 11.0 (including) |
| Photoshop | Adobe | 12.0 (including) | 12.0 (including) |
References
- http://blog.zoller.lu/2010/08/cve-2010-xn-loadlibrarygetprocaddress.html
- http://secunia.com/advisories/41060
- http://www.exploit-db.com/exploits/14741
- http://www.vupen.com/english/advisories/2010/2170
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6778
- http://blog.zoller.lu/2010/08/cve-2010-xn-loadlibrarygetprocaddress.html
- http://secunia.com/advisories/41060
- http://www.exploit-db.com/exploits/14741
- http://www.vupen.com/english/advisories/2010/2170
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6778