← Advisories

Adobe Device Central CS5 v3.0.1.0 (dwmapi.dll) DLL Hijacking Exploit

High

Advisory ID

ZSL-2010-4950

Release Date

26 August 2010

Vendor

Adobe Systems Inc. - http://www.adobe.com

Affected Version

CS5 v3.0.1.0 (3027)

CVE

N/A

Tested On

Microsoft Windows XP Professional SP3 (English)

Summary

Adobe® Device Central CS5 software simplifies the production of innovative and compelling content for mobile phones and consumer electronics devices. Adobe Device Central CS5 now offers support for HTML and the latest versions of Adobe Flash® Player software.

Description

Adobe Device Central CS5 suffers from a dll hijacking vulnerability that enables the attacker to execute arbitrary code on a local level. The vulnerable extensions are .adcp, .adpp, .advs, .ascs and .prf thru dwmapi.dll library.

Proof of Concept

adobedc_dll.cTXT

Disclosure Timeline

N/A

Credits

Vulnerability discovered by Gjoko Krstic

References

[1]http://packetstormsecurity.org/filedesc/adobedc_dll.txt.html

[2]http://www.corelan.be:8800/index.php/2010/08/25/dll-hijacking-kb-2269637-the-unofficial-list/

[3]http://www.exploit-db.com/dll-hijacking-vulnerable-applications/

Changelog

26.08.2010Initial release

27.08.2010Added reference [1], [2] and [3]