KLA10030
ACE vulnerabilities in Adobe Photoshop
Обновлено: 17/06/2019
Дата обнаружения
08/05/2012
Уровень угрозы
Critical
Описание

Multiple serious vulnerabilities have been found in Adobe Photoshop. Malicious users can exploit these vulnerabilities to execute arbitrary code.

Below is a complete list of vulnerabilities

  1. Use-after-free vulnerability can be exploited via specially designed TIFF image.
  2. Buffer overflow vulnerability can be exploited via unknown vectors.
  3. Stack-based buffer overflow vulnerability can be exploited via a long Collada asset element in a DAE file.
  4. Heap-based buffer overflow vulnerability can be exploited via a specially designed TIFF image with SGI24LogLum compression.
Пораженные продукты

Adobe Photoshop CS5.1 versions 12.1 and earlier for Windows and Mac OS

Решение

Update to latest version
Photoshop

Первичный источник обнаружения
Adobe bulletin
Оказываемое влияние
?
ACE 
[?]
Связанные продукты
Adobe Photoshop
CVE-IDS
CVE-2012-20289.3Critical
CVE-2012-20529.3Critical
CVE-2012-027510.0Critical
CVE-2012-20279.3Critical