CVE-2010-3151

Adobe On Location CS4 Build 315 - RCE

Title source: llm

Description

Untrusted search path vulnerability in Adobe On Location CS4 Build 315 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ibfs32.dll that is located in the same folder as an OLPROJ file.

Exploits (1)

exploitdb WORKING POC

by Glafkos Charalambous · clocalwindows

https://www.exploit-db.com/exploits/14772

View Code ZIP pw:eip

References (3)

[Exploit] http://www.exploit-db.com/exploits/14772/

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/64445

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/513332/100/0/threaded

Scores

EPSS 0.0348

EPSS Percentile 87.6%

Details

Status published

Products (3)

adobe/onlocation_cs4 4.0.1

adobe/onlocation_cs4 4.0.2

adobe/onlocation_cs4 4.0.3

Published Aug 27, 2010

Tracked Since Feb 18, 2026