Adobe Device Central CS5 v3.0.1.0 (dwmapi.dll) DLL Hijacking Exploit
Title: Adobe Device Central CS5 v3.0.1.0 (dwmapi.dll) DLL Hijacking Exploit
Advisory ID: ZSL-2010-4950
Type: Local/Remote
Impact: System Access
Risk: (4/5)
Release Date: 26.08.2010
[2] http://www.corelan.be:8800/index.php/2010/08/25/dll-hijacking-kb-2269637-the-unofficial-list/
[3] http://www.exploit-db.com/dll-hijacking-vulnerable-applications/
[27.08.2010] - Added reference [1], [2] and [3]
Web: http://www.zeroscience.mk
e-mail: lab@zeroscience.mk
Advisory ID: ZSL-2010-4950
Type: Local/Remote
Impact: System Access
Risk: (4/5)
Release Date: 26.08.2010
Summary
Adobe® Device Central CS5 software simplifies the production of innovative and compelling content for mobile phones and consumer electronics devices. Adobe Device Central CS5 now offers support for HTML and the latest versions of Adobe Flash® Player software.Description
Adobe Device Central CS5 suffers from a dll hijacking vulnerability that enables the attacker to execute arbitrary code on a local level. The vulnerable extensions are .adcp, .adpp, .advs, .ascs and .prf thru dwmapi.dll library.Vendor
Adobe Systems Inc. - http://www.adobe.comAffected Version
CS5 v3.0.1.0 (3027)Tested On
Microsoft Windows XP Professional SP3 (English)Vendor Status
N/APoC
adobedc_dll.cCredits
Vulnerability discovered by Gjoko Krstic - <gjoko@zeroscience.mk>References
[1] http://packetstormsecurity.org/filedesc/adobedc_dll.txt.html[2] http://www.corelan.be:8800/index.php/2010/08/25/dll-hijacking-kb-2269637-the-unofficial-list/
[3] http://www.exploit-db.com/dll-hijacking-vulnerable-applications/
Changelog
[26.08.2010] - Initial release[27.08.2010] - Added reference [1], [2] and [3]
Contact
Zero Science LabWeb: http://www.zeroscience.mk
e-mail: lab@zeroscience.mk