CVE-2012-2027
Vulnerability from cvelistv5
Published
2012-05-09 01:00
Modified
2024-08-06 19:17
Severity ?
Summary
Use-after-free vulnerability in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a crafted TIFF (aka .TIF) file.
References
psirt@adobe.comhttp://www.adobe.com/support/security/bulletins/apsb12-11.htmlPatch, Vendor Advisory
psirt@adobe.comhttp://www.securityfocus.com/bid/52634
af854a3a-2127-422b-91ae-364da2661108http://www.adobe.com/support/security/bulletins/apsb12-11.htmlPatch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/52634
Impacted products
Vendor Product Version
n/a n/a Version: n/a
Show details on NVD website

To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T19:17:27.764Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.adobe.com/support/security/bulletins/apsb12-11.html"
          },
          {
            "name": "52634",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/52634"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2012-05-08T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Use-after-free vulnerability in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a crafted TIFF (aka .TIF) file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2014-06-19T19:57:00",
        "orgId": "078d4453-3bcd-4900-85e6-15281da43538",
        "shortName": "adobe"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.adobe.com/support/security/bulletins/apsb12-11.html"
        },
        {
          "name": "52634",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/52634"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@adobe.com",
          "ID": "CVE-2012-2027",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Use-after-free vulnerability in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a crafted TIFF (aka .TIF) file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.adobe.com/support/security/bulletins/apsb12-11.html",
              "refsource": "CONFIRM",
              "url": "http://www.adobe.com/support/security/bulletins/apsb12-11.html"
            },
            {
              "name": "52634",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/52634"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "078d4453-3bcd-4900-85e6-15281da43538",
    "assignerShortName": "adobe",
    "cveId": "CVE-2012-2027",
    "datePublished": "2012-05-09T01:00:00",
    "dateReserved": "2012-04-02T00:00:00",
    "dateUpdated": "2024-08-06T19:17:27.764Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2012-2027\",\"sourceIdentifier\":\"psirt@adobe.com\",\"published\":\"2012-05-09T04:36:41.167\",\"lastModified\":\"2024-11-21T01:38:19.360\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Use-after-free vulnerability in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a crafted TIFF (aka .TIF) file.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad de uso de memoria previamente liberada en Photoshop CS5 versiones 12.x anteriores a 12.0.5 y CS5.1 versiones 12.1.x anteriores a 12.1.1 de Adobe, permite a los atacantes remotos ejecutar c\u00f3digo arbitrario por medio de un TIFF dise\u00f1ada (tambi\u00e9n se conoce como .TIF).\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21D8D192-7845-4011-860F-807DC0B452EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:2.5:*:pro:*:*:*:*:*\",\"matchCriteriaId\":\"DE856BFD-E363-45BF-A5AA-CCC468836DE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:3.0:*:pro:*:*:*:*:*\",\"matchCriteriaId\":\"49A18D73-EE59-4782-8736-D70970DB610F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:4.0:*:pro:*:*:*:*:*\",\"matchCriteriaId\":\"9976B659-1F52-4738-B373-8DE92DBEF6F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:5.0:*:pro:*:*:*:*:*\",\"matchCriteriaId\":\"0AACBCAC-74F1-4D8C-89CF-C1612527C70B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"681925AA-C8C8-4C84-B56E-4D4577E9B5A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:6.0:*:pro:*:*:*:*:*\",\"matchCriteriaId\":\"98D707B3-8683-418E-9F2B-40C087FCCAEA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:6.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4398C0A1-52F9-4CD5-8B01-10500C01249C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD03FB10-858D-4B2B-B86A-46AEBF7DA63E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:7.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C81811B5-2DA7-4AED-99ED-A1353335CA83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0820E48-12AD-4112-BC83-D81045D64AA4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5A76E3B-AE7E-4ED7-8851-02B216E6343F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:9.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9467F309-26D5-4C19-AE2B-B25FAD595009\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:9.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F1D2452-C141-4A9E-ACA9-61A44FB63302\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F39A3626-CD9D-42C9-8767-64BE9ED19E73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:10.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEB26222-A027-44F3-B58B-2B323455AA61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B90F7CB6-B672-4FDD-B395-06CB6C18AD66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:11.0:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"7DEFC1FF-B3EC-41B1-BB4E-763D8830BF4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:11.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CA1D1CC-E213-4023-94A8-F2434F06B72E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:11.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB9D7070-A514-4B0A-A288-84E4A613B659\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:11.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"28AE39ED-2EB1-4863-B19A-59FACB411D49\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:12.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59C85C42-EBA3-4589-BDBE-A41319214C29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:12.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8507E525-C3A9-414C-BD08-A237AF070355\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:12.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2C82FB8-9E4D-4349-BC44-E0CBFF6B307E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:12.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8990C4A-0691-4491-8AEC-31380F3990F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop:12.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"921965E7-FF3C-443D-9DA4-CBFC6089767A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop_cs4:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75F5536F-4E8B-4352-B2C7-2F4C46C8C276\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:adobe:photoshop_cs5.5:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"12.0\",\"matchCriteriaId\":\"F987B419-82C1-4F57-AFB9-5330473E20D9\"}]}]}],\"references\":[{\"url\":\"http://www.adobe.com/support/security/bulletins/apsb12-11.html\",\"source\":\"psirt@adobe.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/52634\",\"source\":\"psirt@adobe.com\"},{\"url\":\"http://www.adobe.com/support/security/bulletins/apsb12-11.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/52634\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.