Vulnerability in Adobe Photoshop_elements
CVE-2009-3489
Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 service with an insecure security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using t…
EPSS: 0.020 (77.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Adobe Photoshop_elements — versions 8.0
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (Exploit, VDB Entry, Third Party Advisory, vdb-entry, Broken Link, x_refsource_BID)
- cve@mitre.org (Permissions Required, vdb-entry, x_refsource_VUPEN)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ, VDB Entry, Third Party Advisory, Broken Link)
- cve@mitre.org (x_refsource_MISC, Broken Link)
- cve@mitre.org (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_SECTRACK, Broken Link)
- cve@mitre.org (Exploit, x_refsource_MISC, Broken Link)
- cve@mitre.org (x_refsource_SECUNIA, Broken Link, third-party-advisory)
Frequently asked questions
- What is CVE-2009-3489?
- CVE-2009-3489 is a high-severity vulnerability in Adobe Photoshop_elements, classified under Incorrect Permission Assignment for Critical Resource. CVSS score: 7.8/10. Published 2009-09-30.
- How severe is CVE-2009-3489?
- High severity. CVSS v3 base score is 7.8 out of 10.