|Title:||Adobe On Location Insecure Library Loading Vulnerability (Win)|
|Summary:||Check for the version of Adobe On Location|
Overview: This host is installed with Adobe On Location and is prone to
insecure library loading vulnerability.
The flaw is due to the application insecurely loading certain librairies
from the current working directory, which could allow attackers to execute
arbitrary code by tricking a user into opening a file from a network share.
Successful exploitation will allow attackers to execute arbitrary code and
conduct DLL hijacking attacks.
Impact Level: Application.
Adobe On Location CS4 Build 315 on windows.
Fix: No solution or patch is available as of 08th September, 2010. Information
regarding this issue will be updated once the solution details are available.
For updates refer to http://www.adobe.com/downloads/
Common Vulnerability Exposure (CVE) ID: CVE-2010-3151|
Bugtraq: 20100825 Adobe On Location CS4 DLL Hijacking Exploit (ibfs32.dll) (Google Search)
XForce ISS Database: adobe-ibfs32-code-exec(64445)
|Copyright||Copyright (c) 2010 Greenbone Networks GmbH|
|This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.