CVE-2010-3132

CVE Database · CVE-2010-3132

CVE-2010-3132

· N/AModified

CVSS v3.1

N/A

EPSS

14.30%

Published

Aug 26, 2010

Modified

Apr 28, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBAdobe Dreamweaver CS4 - 'ibfs32.dll' DLL Hijacking Exploit-DBAdobe Dreamweaver CS5 11.0 build 4909 - 'mfc90loc.dll' DLL Hijacking

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Untrusted search path vulnerability in Adobe Dreamweaver CS5 11.0 build 4916, build 4909, and probably other versions, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) mfc90loc.dll or (2) dwmapi.dll that is located in the same folder as a CSS, PHP, ASP, or other file that automatically launches Dreamweaver.

Affected Products (1)

adobe · dreamweavervulnerable

References (8)

http://secunia.com/advisories/41110

Vendor Advisory

http://www.exploit-db.com/exploits/14740

Exploit

http://www.vupen.com/english/advisories/2010/2171

Vendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12035

http://secunia.com/advisories/41110

Vendor Advisory

http://www.exploit-db.com/exploits/14740

Exploit

http://www.vupen.com/english/advisories/2010/2171

Vendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12035

KEV Catalog EPSS Scores Vendors All CVEs