Adobe Device Central CS5 DLL Hijacking Exploit (qtcf.dll)

No description provided by source. / Exploit Title: Adobe Device Central CS5 DLL Hijacking Exploit qtcf.dll Date: August 24, 2010 Author: Glafkos Charalambous glafkos@astalavistadotcom Version: Latest CS5 v3.0.0376 Tested on: Windows 7 x64 Ultimate Vulnerable extensions: .adcp Greetz: Astalavista...

CVE-2012-2052

Stack-based buffer overflow in the U3D.8BI library plugin in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a long Collada asset element in a DAE file, as demonstrated by the cameraYFov value in the contributor comments...

Adobe Patches Photoshop, Illustrator for CS5 Users

Making good on its promise to offer free updates for older versions of some of its most popular products, Adobe pushed out patches for its Photoshop and Illustrator products yesterday, fixing nine vulnerabilities, several which could allow remote code execution. The update for Illustrator applies...

Adobe Photoshop < CS5 / CS5.1 Multiple Arbitrary Code Execution Vulnerabilities (APSB12-11)

The version of Adobe Photoshop installed on the remote Windows host is prior to CS5 12.0.5 or CS5.1 12.1.1. It is, therefore, multiple arbitrary code execution vulnerabilities : - Multiple heap-based buffer overflow conditions exist due to a failure to properly sanitize user-supplied input when...

Adobe Photoshop BOF and Use After Free Vulnerabilities - Mac OS X

Adobe Photoshop is prone to buffer overflow and use after free vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Adobe Photoshop BOF and Use After Free Vulnerabilities (Mac OS X)

This host is installed with Adobe Photoshop and is prone to buffer overflow and use after free vulnerabilities. OpenVAS Vulnerability Test $Id: gbadobephotoshopbofnuseafterfreevulnmacosx.nasl 5963 2017-04-18 09:02:14Z teissa $ Adobe Photoshop BOF and Use After Free Vulnerabilities Mac OS X Author...

Adobe Photoshop CS5 Malformed GIF File Code Execution (APSB11-22; CVE-2011-2131)

A remote code execution vulnerability has been reported in Adobe Photoshop CS5...

CVE-2012-2027

CVE-2012-2027 concerns Adobe Photoshop CS5/CS5.1 where the TIFF image handling contains use-after-free and related buffer overflow weaknesses. The vulnerable components are in the TIFF processing paths (and related image handling routines) that could be triggered by opening a specially crafted TI...

Adobe Photoshop '.GIF' File Processing Memory Corruption Vulnerability

This host is installed with Adobe Photoshop and is prone to remote code execution vulnerability. OpenVAS Vulnerability Test $Id: secpodadobephotoshopgifmemcorruptionvuln.nasl 7052 2017-09-04 11:50:51Z teissa $ Adobe Photoshop '.GIF' File Processing Memory Corruption Vulnerability Authors: Rachana...

Adobe Photoshop CS5 GIF Remote Code Execution

No description provided by source. Application: Adobe Photoshop CS5 GIF Remote Code Execution Platforms: Adobe Photoshop CS5 12.0 and 12.1 Exploitation: Remote code execution CVE Number: CVE-2011-2131 Adobe Vulnerability Identifier: APSB11-22 PRL: 2011-08 Author: Francis Provencher Protek Researc...

Adobe Photoshop CS5 < 12.0.4 Multiple Unspecified Vulnerabilities

The installed version of Adobe Photoshop CS5 is older than 12.0.4, and hence affected by multiple unspecified vulnerabilities. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid53632; scriptversion"1.9"; scriptcvsdate"Date: 2018/11/15 20:50:26";...

Adobe Photoshop CS5 < 12.0.2 (APSB10-30)

The installed version of Adobe Photoshop is older than 12.0.2, and hence affected by the following issues : - Insecure library loading, which could result in arbitrary code execution. CVE-2010-3127 - Multiple unspecified vulnerabilities. C Tenable Network Security, Inc. include"compat.inc"; if...

Adobe Illustrator Path Subversion Arbitrary DLL Injection Code Execution (APSB10-29)

The version of Adobe Illustrator installed on the remote host is earlier than 15.0.2. Such versions insecurely look in their current working directory when resolving DLL and file dependencies, such as for 'aires.dll'. If a malicious DLL with the same name as a required DLL is located in the...

KLA10037 ACE vulnerability in Adobe InDesign

A critical vulnerability was found in Adobe InDesign and InCopy. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally and possibly remotely at a point related to an untrusted path via DLL hijacking. Original advisories Adobe...

Adobe Extension Manager CS5 Insecure Library Loading Vulnerability (Windows)

This host is installed with Adobe Extension Manager CS5 and is prone to insecure library loading vulnerability. OpenVAS Vulnerability Test $Id: gbadobeextmanagerinsecurelibloadvulnwin.nasl 5263 2017-02-10 13:45:51Z teissa $ Adobe Extension Manager CS5 Insecure Library Loading Vulnerability Window...

Adobe Dreamweaver Insecure Library Loading Vulnerability

Adobe Dreamweaver is prone to Insecure Library Loading vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2010-3149

Untrusted search path vulnerability in Adobe Device Central CS5 3.0.0376, 3.0.1.0 3027, and probably other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse qtcf.dll that is located in the same folder as an...

CVE-2010-3154

CVE-2010-3154 affects Adobe Extension Manager CS5 (version 5.0.298). The vulnerability arises from an untrusted search path where a Trojan horse dwmapi.dll placed in the same folder as a .mxi or .mxp file can enable DLL hijacking, allowing local users and potentially remote attackers to execute a...

CVE-2010-3149

CVE-2010-3149 – Adobe Device Central CS5 DLL hijacking vulnerability . Affected: Adobe Device Central CS5 3.0.0(376) and 3.0.1.0(3027), with likelihood of other versions. Root cause: untrusted search path allows a Trojan horse qtcf.dll in the same folder as an ADCP file to be loaded, enabling arb...

CVE-2010-3132

Untrusted search path vulnerability in Adobe Dreamweaver CS5 11.0 build 4916, build 4909, and probably other versions, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse 1 mfc90loc.dll or 2 dwmapi.dll that is located i...