CVE-2010-3127
Last modified
CVE-2010-3127 is a vulnerability of currently unknown severity. Untrusted search path vulnerability in Adobe PhotoShop CS2 through CS5 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or Wintab32.dll that is located in the same folder as a PSD or other file that is processed by PhotoShop. NOTE: some of these details are obtained from third party information.. EPSS estimates a 13.85% chance of exploitation in the next 30 days.
Description
Untrusted search path vulnerability in Adobe PhotoShop CS2 through CS5 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or Wintab32.dll that is located in the same folder as a PSD or other file that is processed by PhotoShop. NOTE: some of these details are obtained from third party information.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Photoshop | 9.0 |
| Adobe | Photoshop | 9.0.1 |
| Adobe | Photoshop | 9.0.2 |
| Adobe | Photoshop | 10.0 |
| Adobe | Photoshop | 11.0 |
| Adobe | Photoshop | 12.0 |
References
- http://secunia.com/advisories/41060Vendor Advisory
- http://www.vupen.com/english/advisories/2010/2170Vendor Advisory
- http://secunia.com/advisories/41060Vendor Advisory
- http://www.vupen.com/english/advisories/2010/2170Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2010-3127?
How severe is CVE-2010-3127?
How do I fix CVE-2010-3127?
Are you affected by CVE-2010-3127?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST