Bug brace menaces Adobe Photoshop
PrintUnpatched graphics flaws menace mankind
Posted in Software & Security, 1st May 2007 11:02 GMT
Free whitepaper – Managing desktop software for fun and profit
Security researchers are warning of a brace of unpatched flaws in Adobe Photoshop that allow hackers to gain control of vulnerable PCs.
The first vulnerability – which affects Adobe Photoshop CS2, Adobe Photoshop CS3, and Adobe Photoshop Elements 5.x – leaves users open to attack if they open malformed PNG graphics files.
Discovered by white hat hacker Marsu, the flaw stems from a stack-based buffer overflow bug in a Photoshop Format Plugin involved in handling PNG files.
Marsu has also discovered a similar buffer overflow vulnerability in Adobe Photoshop CS2 and Adobe Photoshop CS3 involved in the handling of Bitmap files.
Successful exploitation of either security bug allows the execution of arbitrary code. Users are advised not to open untrusted PNG or Bitmap files pending the release of a security update from Adobe. ®
Free whitepaper – Managing desktop software for fun and profit
Managing desktop software for fun and profit
Analyst Keynote: The Register Agile Data Center Summit
Dell PowerEdge R710 solution with VMware ESX vs. Dell PowerEdge 2850 solution
Seven ways to lower storage costs
Sign up, sign up for The Register IT security newsletter
Microsoft's Windows 7 price gamble - and why it's flawed
Managing Desktop Software for fun and profit
Intel's flash new SSDs hit by bugs