CVE-2009-3489

Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 service with an insecure security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using the config command to modify the binPath variable, or (3) restart the service via the start command.

CVSS v2.0 6.9 MEDIUM

6.9^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 3.4 / Impact : 10.0

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.securityfocus.com/bid/36542	Exploit
http://retrogod.altervista.org/9sg_adobe_pe_local.html	Exploit
http://www.securitytracker.com/id?1022963
http://blogs.adobe.com/psirt/2009/09/potential_photoshop_elements_8.html
http://secunia.com/advisories/36895
http://www.vupen.com/english/advisories/2009/2798
http://www.securityfocus.com/archive/1/506806/100/0/threaded

Advertisement

Configurations

Configuration 1 (hide)

cpe:2.3:a:adobe:photoshop_elements:8.0:*:*:*:*:*:*:*

Information

Published : 2009-09-30 08:30

Updated : 2018-10-10 12:43

NVD link : CVE-2009-3489

Mitre link : CVE-2009-3489

JSON object : View

CWE

CWE-16

Configuration

Advertisement

Products Affected

adobe

photoshop_elements

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.securityfocus.com/bid/36542", "name": "36542", "tags": ["Exploit"], "refsource": "BID"}, {"url": "http://retrogod.altervista.org/9sg_adobe_pe_local.html", "name": "http://retrogod.altervista.org/9sg_adobe_pe_local.html", "tags": ["Exploit"], "refsource": "MISC"}, {"url": "http://www.securitytracker.com/id?1022963", "name": "1022963", "tags": [], "refsource": "SECTRACK"}, {"url": "http://blogs.adobe.com/psirt/2009/09/potential_photoshop_elements_8.html", "name": "http://blogs.adobe.com/psirt/2009/09/potential_photoshop_elements_8.html", "tags": [], "refsource": "MISC"}, {"url": "http://secunia.com/advisories/36895", "name": "36895", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.vupen.com/english/advisories/2009/2798", "name": "ADV-2009-2798", "tags": [], "refsource": "VUPEN"}, {"url": "http://www.securityfocus.com/archive/1/506806/100/0/threaded", "name": "20090929 Adobe Photoshop Elements 8.0 Active File Monitor Service Bad Security Descriptor Local Elevation Of Privileges", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 service with an insecure security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using the config command to modify the binPath variable, or (3) restart the service via the start command."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-16"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2009-3489", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "MEDIUM", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}}, "publishedDate": "2009-09-30T15:30Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:adobe:photoshop_elements:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-10T19:43Z"}