CVE-2010-3127

Adobe Photoshop CS2-CS5 - Untrusted Search Path DLL Hijacking via Trojan Horse DLL

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-3127. PoCs published by storm.

AI-analyzed exploit summary This exploit leverages DLL hijacking in Adobe Photoshop CS2 by replacing the Wintab32.dll with a malicious version. When Photoshop loads the DLL, it executes arbitrary code (e.g., launching calc.exe).

Description

Untrusted search path vulnerability in Adobe PhotoShop CS2 through CS5 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or Wintab32.dll that is located in the same folder as a PSD or other file that is processed by PhotoShop. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC

by storm · clocalwindows

https://www.exploit-db.com/exploits/14741

View Code ZIP pw:eip

This exploit leverages DLL hijacking in Adobe Photoshop CS2 by replacing the Wintab32.dll with a malicious version. When Photoshop loads the DLL, it executes arbitrary code (e.g., launching calc.exe).

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Adobe Photoshop CS2 (9.0)

No auth needed

Prerequisites: Victim must open a file in Photoshop CS2 with the malicious DLL in the same directory

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Exploit, Third Party Advisory exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/14741

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/41060

Various Sources x_refsource_misc

http://blog.zoller.lu/2010/08/cve-2010-xn-loadlibrarygetprocaddress.html

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2010/2170

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6778

Scores

EPSS 0.1411

EPSS Percentile 96.1%

Details

Status published

Products (6)

adobe/photoshop 9.0

adobe/photoshop 9.0.1

adobe/photoshop 9.0.2

adobe/photoshop 10.0

adobe/photoshop 11.0

adobe/photoshop 12.0

Published Aug 26, 2010

Tracked Since Feb 18, 2026