Test ID:	1.3.6.1.4.1.25623.1.0.801511
Category:	General
Title:	Adobe On Location Insecure Library Loading Vulnerability (Win)
Summary:	Check for the version of Adobe On Location
Description:	Overview: This host is installed with Adobe On Location and is prone to insecure library loading vulnerability. Vulnerability Insight: The flaw is due to the application insecurely loading certain librairies from the current working directory, which could allow attackers to execute arbitrary code by tricking a user into opening a file from a network share. Impact: Successful exploitation will allow attackers to execute arbitrary code and conduct DLL hijacking attacks. Impact Level: Application. Affected Software: Adobe On Location CS4 Build 315 on windows. Fix: No solution or patch is available as of 08th September, 2010. Information regarding this issue will be updated once the solution details are available. For updates refer to http://www.adobe.com/downloads/ References: http://www.exploit-db.com/exploits/14772/ http://www.securityfocus.com/archive/1/513332/2010-08-20/2
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3151 Bugtraq: 20100825 Adobe On Location CS4 DLL Hijacking Exploit (ibfs32.dll) (Google Search) http://www.securityfocus.com/archive/1/archive/1/513332/100/0/threaded http://www.exploit-db.com/exploits/14772/ XForce ISS Database: adobe-ibfs32-code-exec(64445) http://xforce.iss.net/xforce/xfdb/64445
Copyright	Copyright (c) 2010 Greenbone Networks GmbH

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: