CVE-2024-34123 - Critical Untrusted Search Path Vulnerability in Premiere Pro (Versions 23.6.5, 24.4.1 and earlier)

Adobe Premiere Pro, a popular video editing software, is affected by a critical vulnerability (CVE-2024-34123) that can lead to arbitrary code execution. This vulnerability impacts Premiere Pro versions 23.6.5, 24.4.1, and earlier and involves an untrusted search path that attackers can exploit. To mitigate this risk, users of the affected software should update to the latest version.

Vulnerability Details

The specific vulnerability in question is known as an Untrusted Search Path vulnerability. It occurs when an application uses a search path to locate and execute executables or libraries. An attacker can exploit this vulnerability by inserting a malicious file into the search path, which can lead to the application executing the attacker's file instead of the legitimate file.

Exploitation of this vulnerability requires user interaction and attack complexity is high. However, if successfully exploited, it allows arbitrary code execution, which can result in far-reaching consequences for the impacted system or network.

Code Snippet Example

# Exploit: Untrusted Search Path vulnerability in Premiere Pro
# affected versions: 23.6.5, 24.4.1 and earlier

import os

malicious_dll = "malicious.dll"

# The malicious DLL would be placed by the attacker in a directory
# accessible by a user running Premiere Pro
search_path = "C:\\accessible_directory\\frameworks"
os.environ["PATH"] = search_path + os.pathsep + os.environ["PATH"]

# In this example, the exploitation relies on user interaction, which
# typically occurs when opening a project file or importing media
user_interaction = input("Open project file or import media: ")

if user_interaction:
    # This would be the actual code within Premiere Pro that is vulnerable
    # due to the untrusted search path
    os.system("premiere_pro.exe")

    # The application would then potentially load the attacker's malicious DLL
    # instead of the legitimate one
    print("[*] Loading", malicious_dll)

References

1. Adobe Security Bulletin: <https://helpx.adobe.com/security/products/premiere_pro/apsb21-xx.html>
2. CVE-2024-34123 Details: <https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34123>
3. National Vulnerability Database (NVD): <https://nvd.nist.gov/vuln/detail/CVE-2024-34123>

Mitigation

The best course of action to protect against this vulnerability is to update Adobe Premiere Pro to the latest version. The updated versions will contain a fix that addresses the untrusted search path vulnerability. Adobe has released relevant security updates, which can be accessed through the Adobe Creative Cloud desktop application or Adobe's official website.

Summary

The Untrusted Search Path vulnerability (CVE-2024-34123) in Adobe Premiere Pro versions 23.6.5, 24.4.1, and earlier poses a significant security risk, as it can lead to arbitrary code execution if successfully exploited. Users are advised to update to the latest version of Premiere Pro to mitigate the risk. Stay informed about potential vulnerabilities and follow best practices to secure your systems effectively.

Timeline

Published on: 07/09/2024 19:15:11 UTC
Last modified on: 07/11/2024 13:06:13 UTC