9.3

CVE-2010-3152

Exploit
Untrusted search path vulnerability in Adobe Illustrator CS4 14.0.0, CS5 15.0.1 and earlier, and possibly other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or aires.dll that is located in the same folder as an .ait or .eps file.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdobeIllustrator Version14.0
AdobeIllustrator Version15.0.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 16.85% 0.967
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://osvdb.org/67534
http://secunia.com/advisories/41134
Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb10-29.html
http://www.exploit-db.com/exploits/14773/
Exploit
http://www.securityfocus.com/archive/1/513335/100/0/threaded
http://www.securitytracker.com/id?1024865
http://www.vupen.com/english/advisories/2010/2198
Vendor Advisory