CVE-2010-3149

CVE Database · CVE-2010-3149

CVE-2010-3149

· N/AModified

CVSS v3.1

N/A

EPSS

13.81%

Published

Aug 27, 2010

Modified

Apr 28, 2026

Public PoC / Exploit (1)

All weaponized →

Exploit-DBAdobe Device Central CS5 - 'qtcf.dll' DLL Hijacking

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Untrusted search path vulnerability in Adobe Device Central CS5 3.0.0(376), 3.0.1.0 (3027), and probably other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse qtcf.dll that is located in the same folder as an ADCP file.

Affected Products (1)

adobe · device_central_cs5vulnerable

References (10)

http://osvdb.org/67533

http://secunia.com/advisories/41118

Vendor Advisory

http://www.exploit-db.com/exploits/14755/

Exploit

http://www.securityfocus.com/archive/1/513323/100/0/threaded

http://www.vupen.com/english/advisories/2010/2196