CVE-2012-2052
Stack-based buffer overflow in the U3D.8BI library plugin in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a long Collada asset element in a DAE file, as demonstrated by the cameraYFov value in the contributor comments element.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.5809 (58.1%)
Percentile: 98.2%
EPSS: 2026-05-06
Affects
adobe:photoshop_cs5adobe:photoshop_cs5.1Technical description
Stack-based buffer overflow in the U3D.8BI library plugin in Adobe Photoshop CS5 12.x before 12.0.5 and CS5.1 12.1.x before 12.1.1 allows remote attackers to execute arbitrary code via a long Collada asset element in a DAE file, as demonstrated by the cameraYFov value in the contributor comments element.
Published: 6/19/2014, 8:55:09 PM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://osvdb.org/show/osvdb/81832
- http://retrogod.altervista.org/9sg_photoshock_adv.htm
- http://retrogod.altervista.org/9sg_photoshock_u3d.htm
- http://seclists.org/bugtraq/2012/May/58
- http://secunia.com/advisories/49160
- http://www.adobe.com/support/security/bulletins/apsb12-11.html
- http://www.securityfocus.com/bid/53464
- http://osvdb.org/show/osvdb/81832