CVSS: 9.3EPSS: 89%CPEs: 6EXPL: 5CVE-2012-2052 – Adobe Photoshop CS5.1 - U3D.8BI Collada Asset Elements Stack Overflow
https://notcve.org/view.php?id=CVE-2012-2052
Stack-based buffer overflow in the U3D.8BI library plugin in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a long Collada asset element in a DAE file, as demonstrated by the cameraYFov value in the contributor comments element. Desbordamiento de buffer basado en pila en el plugin de libraría U3D.8BI en Adobe Photoshop CS5 12.x anterior a 12.0.5 y CS5.1 12.1.x anterior a 12.1.1 permite a atacantes remotos ejecutar código arbitrario a través de un elemento largo de activos Collada en un fichero DAE, tal y como fue demostrado por el valor cameraYFov eb el elemento de comentarios de colaboradores. • https://www.exploit-db.com/exploits/18862 http://osvdb.org/show/osvdb/81832 http://retrogod.altervista.org/9sg_photoshock_adv.htm http://retrogod.altervista.org/9sg_photoshock_u3d.htm http://seclists.org/bugtraq/2012/May/58 http://secunia.com/advisories/49160 http://www.adobe.com/support/security/bulletins/apsb12-11.html http://www.securityfocus.com/bid/53464 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •