Buffer Overflows In Adobe Products

Published: 2007-04-30
Last Updated: 2007-04-30 23:29:02 UTC
by Joel Esler (Version: 2)
0 comment(s)
Seems as if there are a couple Buffer Overflows in multiple Adobe products.  According to the vulnerability postings the following products are affected:

The PNG exploit affects:
 -Photoshop CS2                                                         
-Photoshop CS3
-Photoshop Elements 5.0
-Corel Paint Shop Pro 11.20

And the Bitmap exploit affects:

 -Photoshop CS2                                                         
-Photoshop CS3
The solutions for these exploits, basically, is not to open untrusted .png, or .bmp, .dib, and .rle files, respectively.   The possibility for remote shells and command execution do exist.   So be cautious.  I am sure there will be more to come.

Joel Esler
http://handlers.sans.org/jesler


Keywords:
0 comment(s)
Diary Archives