CVE-2009-3489

HIGHCVSS 7.8

7.8

Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 service with an insecure security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using the config command to modify the binPath variable, or (3) restart the service via the start command.

🔗 References (14)

cve@mitrehttp://blogs.adobe.com/psirt/2009/09/potential_photoshop_elements_8.html
cve@mitrehttp://retrogod.altervista.org/9sg_adobe_pe_local.html
cve@mitrehttp://secunia.com/advisories/36895
cve@mitrehttp://www.securityfocus.com/archive/1/506806/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/36542
cve@mitrehttp://www.securitytracker.com/id?1022963
cve@mitrehttp://www.vupen.com/english/advisories/2009/2798
af854a3a-2127-422b-91ae-364da2661108http://blogs.adobe.com/psirt/2009/09/potential_photoshop_elements_8.html
af854a3a-2127-422b-91ae-364da2661108http://retrogod.altervista.org/9sg_adobe_pe_local.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/36895
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/506806/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/36542
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1022963
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2009/2798

Is Your Infrastructure Affected by CVE-2009-3489?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-3489

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-3489?