CVE-2010-3150

Adobe Premier Pro CS4 4.0.0 - Untrusted Search Path and DLL Hijacking via Trojan Horse DLL

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-3150. PoCs published by Glafkos Charalambous.

AI-analyzed exploit summary This exploit demonstrates DLL hijacking in Adobe Premiere Pro CS4 by replacing the legitimate ibfs32.dll with a malicious one. The DllMain function triggers a MessageBox popup upon execution, proving the vulnerability.

Description

Untrusted search path vulnerability in Adobe Premier Pro CS4 4.0.0 (314 (MC: 160820)) allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as a .pproj, .prfpset, .prexport, .prm, .prmp, .prpreset, .prproj, .prsl, .prtl, or .vpr file.

Exploits (1)

exploitdb WORKING POC
by Glafkos Charalambous · clocalwindows
https://www.exploit-db.com/exploits/14771

This exploit demonstrates DLL hijacking in Adobe Premiere Pro CS4 by replacing the legitimate ibfs32.dll with a malicious one. The DllMain function triggers a MessageBox popup upon execution, proving the vulnerability.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: Adobe Premiere Pro CS4 v4.0.0 (314 (MC: 160820))
No auth needed
Prerequisites: Victim must open a file with a vulnerable extension in a directory where the malicious DLL is placed
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/14771/
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/2209
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/513336/100/0/threaded

Scores

EPSS 0.1536
EPSS Percentile 96.4%

Details

Status published
Products (1)
adobe/premier_pro_cs4 4.0.0_\(314\(mc\ _160820\)\)
Published Aug 27, 2010
Tracked Since Feb 18, 2026