Lucene search

K

AdobeCVE-2010-1296

HistoryMay 27, 2010 - 7:30 p.m.

CVE-2010-1296

2010-05-2719:30:01

CWE-119

adobe

web.nvd.nist.gov

42

cve-2010-1296

adobe photoshop cs4

buffer overflows

remote code execution

security vulnerability

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.157

Percentile

96.0%

Multiple buffer overflows in Adobe Photoshop CS4 before 11.0.2 allow user-assisted remote attackers to execute arbitrary code via a crafted (1) .ASL, (2) .ABR, or (3) .GRD file.

Affected configurations

Nvd

Node

adobephotoshop_cs4Range≤11.0.1

OR

adobephotoshop_cs4Match11.0

VendorProductVersionCPE
adobephotoshop_cs4*cpe:2.3:a:adobe:photoshop_cs4:*:*:*:*:*:*:*:*
adobephotoshop_cs411.0cpe:2.3:a:adobe:photoshop_cs4:11.0:*:*:*:*:*:*:*

References

www.adobe.com/support/security/bulletins/apsb10-13.html

www.exploit-db.com/exploits/12751

www.exploit-db.com/exploits/12752

www.exploit-db.com/exploits/12753

www.securityfocus.com/bid/40389

www.securitytracker.com/id?1024042

www.zeroscience.mk/codes/psbrush_bof.txt

www.zeroscience.mk/codes/psgradient_bof.txt

www.zeroscience.mk/codes/psstyle_bof.txt

www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4938.php

www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4939.php

www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4940.php

exchange.xforce.ibmcloud.com/vulnerabilities/58888

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.157

Percentile

96.0%

Related for CVE-2010-1296

zeroscience3 packetstorm3 exploitdb3 openvas2 exploitpack3 seebug2 checkpoint_advisories1 prion2 nvd2 cvelist2 cve1