Published: 30/09/2009 Updated: 08/02/2024

CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 700

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 service with an insecure security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using the config command to modify the binPath variable, or (3) restart the service via the start command.

Vulnerable Product	Search on Vulmon	Subscribe to Product
adobe photoshop elements 8.0

To exploit this issue, attackers require local, interactive access to an affected computer The following example commands are available: sc stop "AdobeActiveFileMonitor80" sc config "AdobeActiveFileMonitor80" binPath= "cmd /c net user adobe kills /add && net localgroup Administrators adobe /add" sc start "AdobeActiveFileMonitor80" run ...

Adobe Photoshop Elements 80 Active File Monitor Service Bad Security Descriptor Local Elevation Of Privileges by Nine:Situations:Group::bellick site: retrogodaltervistaorg/ Tested on Microsoft Windows XP SP3 The "Adobe Active File Monitor V8" service is installed with an improper security descriptor A malicious user of the Users group ...

CWE-732 http://www.securityfocus.com/bid/36542 http://retrogod.altervista.org/9sg_adobe_pe_local.html http://www.securitytracker.com/id?1022963 http://blogs.adobe.com/psirt/2009/09/potential_photoshop_elements_8.html http://secunia.com/advisories/36895 http://www.vupen.com/english/advisories/2009/2798 http://www.securityfocus.com/archive/1/506806/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/9988/

CVE-2009-3489

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect