Lucene search

[email protected]NVD:CVE-2010-3150

HistoryAug 27, 2010 - 7:00 p.m.

CVE-2010-3150

2010-08-2719:00:18

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

High

EPSS

0.007

Percentile

80.9%

JSON

Untrusted search path vulnerability in Adobe Premier Pro CS4 4.0.0 (314 (MC: 160820)) allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as a .pproj, .prfpset, .prexport, .prm, .prmp, .prpreset, .prproj, .prsl, .prtl, or .vpr file.

Affected configurations

Nvd

Node

adobepremier_pro_cs4Match4.0.0_\(314\(mc\_160820\)\)

VendorProductVersionCPE
adobepremier_pro_cs44.0.0_(314(mccpe:2.3:a:adobe:premier_pro_cs4:4.0.0_\(314\(mc\:_160820\)\):*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	premier_pro_cs4	4.0.0_(314(mc	cpe:2.3:a:adobe:premier_pro_cs4:4.0.0_\(314\(mc\:_160820\)\):::::::*

References

www.exploit-db.com/exploits/14771/

www.securityfocus.com/archive/1/513336/100/0/threaded

www.vupen.com/english/advisories/2010/2209

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

High

EPSS

0.007

Percentile

80.9%

JSON

Related for NVD:CVE-2010-3150

cvelist1 exploitdb1 prion1 cve1