Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Untrusted search path vulnerability in Adobe ExtendScript Toolkit (ESTK) CS5 3.5.0.52 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .jsx file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Adobe ExtendedScript Toolkit非信任搜索路径漏洞
Vulnerability Description
Adobe ExtendedScript Toolkit是由Adobe公司开发的一款扩展脚本语言工具包。 Adobe ExtendedScript Toolkit (ESTK) CS5 3.5.0.52版本中存在非信任搜索路径漏洞。本地用户和远程攻击者可以借助与.jsx文件在同一文件夹下的dwmapi.dll木马执行任意代码,或者导致DLL劫持攻击。
CVSS Information
N/A
Vulnerability Type
N/A