VYPR
← All advisories
Unrated severityNVD Advisory· Published Aug 27, 2010· Updated Apr 29, 2026

CVE-2010-3155

CVE-2010-3155

Description

Adobe ExtendScript Toolkit CS5 3.5.0.52 DLL hijacking via dwmapi.dll allows arbitrary code execution when opening a .jsx file from the same folder as a malicious DLL.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Adobe ExtendScript Toolkit CS5 3.5.0.52 DLL hijacking via dwmapi.dll allows arbitrary code execution when opening a .jsx file from the same folder as a malicious DLL.

Vulnerability

Adobe ExtendScript Toolkit (ESTK) CS5 version 3.5.0.52 contains an untrusted search path vulnerability. When opening a .jsx script file, the application searches for and loads the dwmapi.dll library from the current working directory before checking system paths. This allows an attacker to place a malicious dwmapi.dll in the same folder as a .jsx file, leading to DLL hijacking [1].

Exploitation

An attacker must craft a malicious dwmapi.dll (e.g., compiled with gcc -shared -o dwmapi.dll as shown in the exploit code) and place it in a folder containing a .jsx file. When a user opens the .jsx file from that folder, the ESTK loads the attacker's DLL, executing arbitrary code with the user's privileges [1]. The attack can be performed locally or remotely (e.g., via a downloaded archive).

Impact

Successful exploitation results in arbitrary code execution at the privilege level of the current user. The attacker gains full control over the affected system, enabling further compromise.

Mitigation

No official patch was released by Adobe for this vulnerability. Users should avoid opening .jsx files from untrusted sources and ensure that system DLL search paths are secure. Upgrading to a newer version of ESTK or Adobe Creative Suite may mitigate the issue [1].

References
  1. OffSec’s Exploit Database Archive

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2
  • Adobe Inc./Extendedscript Toolkit Cs52 versions
    cpe:2.3:a:adobe:extendedscript_toolkit_cs5:3.5.0.52:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:adobe:extendedscript_toolkit_cs5:3.5.0.52:*:*:*:*:*:*:*
    • (no CPE)range: = 3.5.0.52

Patches

0

No patches discovered yet.

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

2

News mentions

0

No linked articles in our index yet.