CVSS: 9.3EPSS: 91%CPEs: 28EXPL: 1CVE-2012-2027 – Adobe Photoshop 12.1 - '.tiff' Parsing Use-After-Free
https://notcve.org/view.php?id=CVE-2012-2027
Use-after-free vulnerability in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a crafted TIFF (aka .TIF) file. Una vulnerabilidad de uso de memoria previamente liberada en Photoshop CS5 versiones 12.x anteriores a 12.0.5 y CS5.1 versiones 12.1.x anteriores a 12.1.1 de Adobe, permite a los atacantes remotos ejecutar código arbitrario por medio de un TIFF diseñada (también se conoce como .TIF). • https://www.exploit-db.com/exploits/18633 http://www.adobe.com/support/security/bulletins/apsb12-11.html http://www.securityfocus.com/bid/52634 • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 5%CPEs: 28EXPL: 0CVE-2012-2028
https://notcve.org/view.php?id=CVE-2012-2028
Buffer overflow in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via unspecified vectors. Desbordamiento de buffer en Adobe Photoshop antes de CS6, permite a atacantes remotos ejecutar código de su elección a través de un archivo TIFF modificado (también conocido como .TIF). • http://www.adobe.com/support/security/bulletins/apsb12-11.html http://www.securityfocus.com/bid/53421 http://www.securitytracker.com/id?1027046 https://exchange.xforce.ibmcloud.com/vulnerabilities/75457 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 15%CPEs: 2EXPL: 13CVE-2010-1296 – Adobe Photoshop CS4 Extended 11.0 - '.ASL' File Handling Remote Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2010-1296
Multiple buffer overflows in Adobe Photoshop CS4 before 11.0.2 allow user-assisted remote attackers to execute arbitrary code via a crafted (1) .ASL, (2) .ABR, or (3) .GRD file. Múltiples desbordamiento de búfer en Adobe Photoshop CS4 anterior a v11.0.2 permite a atacantes asistidos por el usuario ejecutar código de su elección a través de un fichero manipulado (1) .ASL, (2) .ABR, o (3) .GRD Adobe Photoshop CS4 Extended suffers from a buffer overflow vulnerability when dealing with .GRD (gradients) format file. The application fails to sanitize the user input resulting in a memory corruption, overwriting several memory registers which can aid the attacker to gain the power of executing arbitrary code or denial of service. Version CS4 Extended 11.0.0.0 is affected. • https://www.exploit-db.com/exploits/12753 https://www.exploit-db.com/exploits/12751 https://www.exploit-db.com/exploits/12752 http://www.adobe.com/support/security/bulletins/apsb10-13.html http://www.exploit-db.com/exploits/12751 http://www.exploit-db.com/exploits/12752 http://www.exploit-db.com/exploits/12753 http://www.securityfocus.com/bid/40389 http://www.securitytracker.com/id?1024042 http://www.zeroscience.mk/codes/psbrush_bof.txt http://www.zeroscience.mk&#x • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 1%CPEs: 1EXPL: 0CVE-2010-1279
https://notcve.org/view.php?id=CVE-2010-1279
Multiple unspecified vulnerabilities in Adobe Photoshop CS4 11.x before 11.0.1 allow user-assisted remote attackers to execute arbitrary code via a crafted TIFF file. Múltiples vulnerabilidades sin especificar en Adobe Photoshop CS4 v11.x anterior a v11.0.1 permiten a atacantes remotos ejecutar código de su elección a través de archivos TIFF manipulados. • http://secunia.com/advisories/39711 http://www.adobe.com/support/security/bulletins/apsb10-10.html http://www.securityfocus.com/bid/39849 http://www.vupen.com/english/advisories/2010/1049 • CWE-94: Improper Control of Generation of Code ('Code Injection') •