Adobe Illustrator Path Subversion Arbitrary DLL Injection Code Execution (APSB10-29)

This script is Copyright (C) 2010-2012 Tenable Network Security, Inc.


Synopsis :

The remote Windows host contains an application that allows arbitrary
code execution.

Description :

The version of Adobe Illustrator installed on the remote host is
earlier than 15.0.2. Such versions insecurely look in their current
working directory when resolving DLL and file dependencies, such as
for 'aires.dll'.

If a malicious DLL with the same name as a required DLL is located in
the application's current working directory, the malicious DLL will be
loaded.

See also :

http://www.adobe.com/support/security/bulletins/apsb10-29.html

Solution :

Upgrade to Adobe Illustrator CS5 if necessary and apply the 15.0.2
update.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.7
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 50988 ()

Bugtraq ID: 42715

CVE ID: CVE-2010-3152

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now