CVSS: 9.3EPSS: 60%CPEs: 4EXPL: 1CVE-2011-2131 – Adobe Photoshop CS5 - '.gif' Remote Code Execution
https://notcve.org/view.php?id=CVE-2011-2131
11 Aug 2011 — Adobe Photoshop 12.0 in Creative Suite 5 (CS5) and 12.1 in Creative Suite 5.1 (CS5.1) allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted GIF file. Adobe Photoshop v12.0 en Creative Suite 5 (CS5) y v12.1 en Creative Suite v5.1 (CS5.1) permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de un archivo GIF creado. • https://www.exploit-db.com/exploits/17712 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 1%CPEs: 15EXPL: 0CVE-2011-2164
https://notcve.org/view.php?id=CVE-2011-2164
20 May 2011 — Multiple unspecified vulnerabilities in Adobe Photoshop before 12.0.4 have unknown impact and attack vectors. Múltiples vulnerabilidades no especificadas en Adobe Photoshop antes de v12.0.4 tienen un impacto y vectores de ataque desconocidos. • http://blogs.adobe.com/jnack/2011/05/photoshop-12-0-4-update-for-cs5-arrives.html •
CVSS: 9.3EPSS: 17%CPEs: 6EXPL: 2CVE-2010-3127 – Adobe Photoshop CS2 - 'Wintab32.dll' DLL Hijacking
https://notcve.org/view.php?id=CVE-2010-3127
26 Aug 2010 — Untrusted search path vulnerability in Adobe PhotoShop CS2 through CS5 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or Wintab32.dll that is located in the same folder as a PSD or other file that is processed by PhotoShop. NOTE: some of these details are obtained from third party information. Vulnerabilidad de ruta de búsqueda no confiable en Adobe PhotoShop CS2 hasta CS5 permite a usuarios locales, y puede que at... • https://www.exploit-db.com/exploits/14741 •
CVSS: 9.3EPSS: 37%CPEs: 2EXPL: 13CVE-2010-1296 – Adobe Photoshop CS4 Extended 11.0 - '.ASL' File Handling Remote Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2010-1296
27 May 2010 — Multiple buffer overflows in Adobe Photoshop CS4 before 11.0.2 allow user-assisted remote attackers to execute arbitrary code via a crafted (1) .ASL, (2) .ABR, or (3) .GRD file. Múltiples desbordamiento de búfer en Adobe Photoshop CS4 anterior a v11.0.2 permite a atacantes asistidos por el usuario ejecutar código de su elección a través de un fichero manipulado (1) .ASL, (2) .ABR, o (3) .GRD • https://www.exploit-db.com/exploits/12753 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 7%CPEs: 1EXPL: 0CVE-2010-1279
https://notcve.org/view.php?id=CVE-2010-1279
04 May 2010 — Multiple unspecified vulnerabilities in Adobe Photoshop CS4 11.x before 11.0.1 allow user-assisted remote attackers to execute arbitrary code via a crafted TIFF file. Múltiples vulnerabilidades sin especificar en Adobe Photoshop CS4 v11.x anterior a v11.0.1 permiten a atacantes remotos ejecutar código de su elección a través de archivos TIFF manipulados. • http://secunia.com/advisories/39711 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 4CVE-2009-3489 – Adobe Photoshop Elements - Active File Monitor Service Privilege Escalation
https://notcve.org/view.php?id=CVE-2009-3489
30 Sep 2009 — Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 service with an insecure security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using the config command to modify the binPath variable, or (3) restart the service via the start command. Adobe Photoshop Elements v8.0 instala Adobe Active File Monitor V8 service con un descriptor de seguridad no seguro, que permite a usuarios locales (1) parar el servicio a t... • https://www.exploit-db.com/exploits/9988 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 9.3EPSS: 25%CPEs: 1EXPL: 2CVE-2008-1765 – Adobe Album Starter 3.2 - Unchecked Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2008-1765
23 Apr 2008 — Buffer overflow in Adobe Photoshop Album Starter Edition 3.2, and possibly After Effects CS3, allows user-assisted remote attackers and physically proximate attackers to execute arbitrary code via a BMP file with an invalid image header. NOTE: the related issue in Photoshop CS3 is already covered by CVE-2007-2244. Desbordamiento de búfer en Adobe Photoshop Album Starter Edition 3.2, y posiblemente en After Effects CS3, permite a atacantes remotos con usuario asistido, y atacantes físicamente próximos ejecut... • https://www.exploit-db.com/exploits/5479 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 70%CPEs: 4EXPL: 1CVE-2007-2365 – Photoshop CS2/CS3 / Paint Shop Pro 11.20 - '.png' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-2365
30 Apr 2007 — Buffer overflow in Adobe Photoshop CS2 and CS3, Photoshop Elements 5.0, Illustrator CS3, and GoLive 9 allows user-assisted remote attackers to execute arbitrary code via a crafted .PNG file. Un desbordamiento de búfer en Adobe Photoshop versiones CS2 y CS3, Photoshop Elements versión 5.0, Illustrator versión CS3 y GoLive versión 9, permite a atacantes remotos asistidos por el usuario ejecutar código arbitrario por medio de un archivo .PNG especialmente diseñado. • https://www.exploit-db.com/exploits/3812 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 54%CPEs: 3EXPL: 2CVE-2007-2244 – Adobe Photoshop CS2 / CS3 - '.bmp' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-2244
25 Apr 2007 — Multiple buffer overflows in Adobe Photoshop CS2 and CS3, Illustrator CS3, and GoLive 9 allow user-assisted remote attackers to execute arbitrary code via a crafted (1) BMP, (2) DIB, or (3) RLE file. Múltiples desbordamientos de búfer en Adobe Photoshop versiones CS2 y CS3, Illustrator versión CS3 y GoLive versión 9, permite a atacantes remotos asistidos por el usuario ejecutar código arbitrario por medio de un archivo (1) BMP, (2) DIB o (3) RLE especialmente diseñados. • https://www.exploit-db.com/exploits/3793 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 60EXPL: 0CVE-2006-0525
https://notcve.org/view.php?id=CVE-2006-0525
02 Feb 2006 — Multiple Adobe products, including (1) Photoshop CS2, (2) Illustrator CS2, and (3) Adobe Help Center, install a large number of .EXE and .DLL files with write-access permission for the Everyone group, which allows local users to gain privileges via Trojan horse programs. • http://secunia.com/advisories/18698 • CWE-264: Permissions, Privileges, and Access Controls •