ACE vulnerabilities in Adobe Photoshop

Описание

Multiple serious vulnerabilities have been found in Adobe Photoshop. Malicious users can exploit these vulnerabilities to execute arbitrary code.

Below is a complete list of vulnerabilities

1. Use-after-free vulnerability can be exploited via specially designed TIFF image.
2. Buffer overflow vulnerability can be exploited via unknown vectors.
3. Stack-based buffer overflow vulnerability can be exploited via a long Collada asset element in a DAE file.
4. Heap-based buffer overflow vulnerability can be exploited via a specially designed TIFF image with SGI24LogLum compression.

Первичный источник обнаружения

• Adobe bulletin
  

Связанные продукты

• Adobe-Photoshop

Список CVE

• CVE-2012-2028
  critical
• CVE-2012-2052
  critical
• CVE-2012-0275
  critical
• CVE-2012-2027
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com