‫ Adobe Photoshop CS5 Collada File Processing Buffer Overflow Vulnerability

IRCAD2012051927
ID: IRCAD2012051927
Release Date: 2012-05-15
Criticality level: Highly critical
 
Software:
Adobe Photoshop CS5 12.x
 
Description:
Andrea Micalizzi has discovered a vulnerability in Adobe Photoshop CS5, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a boundary error in the U3D.8BI plug-in when processing certain Collada file elements. This can be exploited to cause a stack-based buffer overflow via a specially crafted DAE file.
Successful exploitation allows execution of arbitrary code, but requires tricking a user into opening a malicious file.
The vulnerability is confirmed in version CS5 12.1 (20110328.r.145). Other versions may also be affected.
 
Solution
Upgrade to Adobe Photoshop CS6.
 
References:
 
Secunia:
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 26 اردیبهشت 1391

امتیاز

امتیاز شما
تعداد امتیازها:0