CVE-2009-3489
Adobe Photoshop Elements - Active File Monitor Service Privilege Escalation
Severity Score
7.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
4
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 service with an insecure security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using the config command to modify the binPath variable, or (3) restart the service via the start command.
Adobe Photoshop Elements v8.0 instala Adobe Active File Monitor V8 service con un descriptor de seguridad no seguro, que permite a usuarios locales (1) parar el servicio a través de comando stop, (2) ejecutar comandos de su elección como SYSTEM usando el comando config para modificar la variable binPaht, o (3) reiniciar el servicio a través del comando start.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-09-29 First Exploit
- 2009-09-30 CVE Reserved
- 2009-09-30 CVE Published
- 2024-02-08 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-732: Incorrect Permission Assignment for Critical Resource
CAPEC
References (8)
| URL | Tag | Source |
|---|---|---|
| http://blogs.adobe.com/psirt/2009/09/potential_photoshop_elements_8.html | Broken Link | |
| http://secunia.com/advisories/36895 | Broken Link | |
| http://www.securityfocus.com/archive/1/506806/100/0/threaded | Broken Link | |
| http://www.securitytracker.com/id?1022963 | Broken Link |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/9988 | 2009-10-29 | |
| https://www.exploit-db.com/exploits/9807 | 2009-09-29 | |
| http://retrogod.altervista.org/9sg_adobe_pe_local.html | 2024-08-07 | |
| http://www.securityfocus.com/bid/36542 | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Adobe Search vendor "Adobe" | Photoshop Elements Search vendor "Adobe" for product "Photoshop Elements" | 8.0 Search vendor "Adobe" for product "Photoshop Elements" and version "8.0" | - |
Affected
| ||||||