Vulnerability Description
Untrusted search path vulnerability in Adobe Premier Pro CS4 4.0.0 (314 (MC: 160820)) allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as a .pproj, .prfpset, .prexport, .prm, .prmp, .prpreset, .prproj, .prsl, .prtl, or .vpr file.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Premier Pro Cs4 | 4.0.0_\(314\(mc\ |
References
- http://www.exploit-db.com/exploits/14771/Exploit
- http://www.securityfocus.com/archive/1/513336/100/0/threaded
- http://www.vupen.com/english/advisories/2010/2209
- http://www.exploit-db.com/exploits/14771/Exploit
- http://www.securityfocus.com/archive/1/513336/100/0/threaded
- http://www.vupen.com/english/advisories/2010/2209
FAQ
What is CVE-2010-3150?
CVE-2010-3150 is a vulnerability with a CVSS score of 9.3 (HIGH). Untrusted search path vulnerability in Adobe Premier Pro CS4 4.0.0 (314 (MC: 160820)) allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via...
How severe is CVE-2010-3150?
CVE-2010-3150 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-3150?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Premier Pro Cs4.