CVE-2012-2052
critical
CVSS v3
—
CVSS v2
9.3
VIR risk
9.3
Description
Stack-based buffer overflow in the U3D.8BI library plugin in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a long Collada asset element in a DAE file, as demonstrated by the cameraYFov value in the contributor comments element.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: psirt@adobe.com — http://www.adobe.com/support/security/bulletins/apsb12-11.html
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| adobe | photoshop_cs5 | 12.0 | |
| adobe | photoshop_cs5 | 12.0.1 | |
| adobe | photoshop_cs5 | 12.0.2 | |
| adobe | photoshop_cs5 | 12.0.3 | |
| adobe | photoshop_cs5 | 12.0.4 | |
| adobe | photoshop_cs5.1 | 12.1 | |
References
- http://osvdb.org/show/osvdb/81832
- http://retrogod.altervista.org/9sg_photoshock_adv.htm
- http://retrogod.altervista.org/9sg_photoshock_u3d.htm
- http://seclists.org/bugtraq/2012/May/58
- http://secunia.com/advisories/49160
- http://www.adobe.com/support/security/bulletins/apsb12-11.html
- http://www.securityfocus.com/bid/53464
- http://osvdb.org/show/osvdb/81832
- http://retrogod.altervista.org/9sg_photoshock_adv.htm
- http://retrogod.altervista.org/9sg_photoshock_u3d.htm
- http://seclists.org/bugtraq/2012/May/58
- http://secunia.com/advisories/49160
- http://www.adobe.com/support/security/bulletins/apsb12-11.html
- http://www.securityfocus.com/bid/53464
CWEs
CWE-119
Verify integrity in audit chain (admin only). AS-IS.