CVE-2012-2052

Adobe Photoshop CS5 12.x-12.0.4 and CS5.1 12.1.x-12.1.0 - Remote Code Execution via U3D Library Collada Asset Element

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-2052. PoCs published by rgod.

AI-analyzed exploit summary This exploit leverages a Unicode conversion stack-based buffer overflow in Adobe Photoshop CS5.1's U3D.8bi Library Collada Asset Elements. It crafts a malicious .dae file to trigger the vulnerability, using an alphabetic shellcode to bypass filtering and achieve arbitrary code execution.

Description

Stack-based buffer overflow in the U3D.8BI library plugin in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a long Collada asset element in a DAE file, as demonstrated by the cameraYFov value in the contributor comments element.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phplocalwindows

https://www.exploit-db.com/exploits/18862

View Code ZIP pw:eip

This exploit leverages a Unicode conversion stack-based buffer overflow in Adobe Photoshop CS5.1's U3D.8bi Library Collada Asset Elements. It crafts a malicious .dae file to trigger the vulnerability, using an alphabetic shellcode to bypass filtering and achieve arbitrary code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Adobe Photoshop CS5.1

No auth needed

Prerequisites: Victim must open the malicious .dae file in Adobe Photoshop CS5.1

MITRE ATT&CK