Adobe Photoshop Elements Active File Monitor Service Privilege Escalation (APSB09-17)

high Nessus Plugin ID 42861

Synopsis

An improperly configured Windows service has a privilege escalation vulnerability.

Description

The Adobe Active File Monitor service, installed with Adobe Photoshop Elements, is installed on the remote host. This service is configured improperly by default, allowing unprivileged users to modify its properties. An unprivileged, local attacker could exploit this to execute arbitrary commands as SYSTEM.

Solution

Apply the workaround referenced in the vendor's advisory.

See Also

https://seclists.org/bugtraq/2009/Sep/237

https://www.adobe.com/support/security/bulletins/apsb09-17.html

Plugin Details

Severity: High

ID: 42861

File Name: adobe_active_file_monitor_svc_priv_escalation.nbin

Version: 1.235

Type: local

Agent: windows

Family: Windows

Published: 11/20/2009

Updated: 11/22/2024

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 6.5

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Required KB Items: SMB/svcs, SMB/transport, SMB/name, SMB/login, SMB/password

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 11/10/2009

Vulnerability Publication Date: 9/29/2009

Reference Information

CVE: CVE-2009-3489

BID: 36542

CWE: 16

Secunia: 36895