CVE

Id
45737  
CVE No.
CVE-2010-3153  
Status
Candidate  
Description
Untrusted search path vulnerability in Adobe InDesign CS4 6.0, InDesign CS5 7.0.2 and earlier, Adobe InDesign Server CS5 7.0.2 and earlier, and Adobe InCopy CS5 7.0.2 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as an .indl, .indp, .indt, or .inx file.  
Phase
Assigned (20100827)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
497876 45737 CVE-2010-3153 BUGTRAQ:20100825 Adobe InDesign CS4 DLL Hijacking Exploit (ibfs32.dll)  View
497877 45737 CVE-2010-3153 URL:http://www.securityfocus.com/archive/1/archive/1/513340/100/0/threaded  View
497878 45737 CVE-2010-3153 EXPLOIT-DB:14775  View
497879 45737 CVE-2010-3153 URL:http://www.exploit-db.com/exploits/14775/  View
497880 45737 CVE-2010-3153 CONFIRM:http://www.adobe.com/support/security/bulletins/apsb10-24.html  View
497881 45737 CVE-2010-3153 SECTRACK:1024612  View
497882 45737 CVE-2010-3153 URL:http://www.securitytracker.com/id?1024612  View
497883 45737 CVE-2010-3153 SECUNIA:41126  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
35195 JVNDB-2010-000040 XacRett における実行ファイル読み込みに関する脆弱性 XacRett には、実行ファイル読み込みに関する脆弱性が存在します。 CVE-2010-3157 45737 6.8 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000040.html  View