‫ Adobe Illustrator Multiple Vulnerabilities

IRCAD2012051916
ID: IRCAD2012051916
Release Date: 2012-05-09
Criticality level: Highly critical
Software:
Adobe Illustrator CS5 15.x
Description:
Multiple vulnerabilities have been reported in Adobe Illustrator, which can be exploited by malicious people to compromise a user's system.
1) An unspecified error can be exploited to corrupt memory.
2) Another unspecified error can be exploited to corrupt memory.
3) Another unspecified error can be exploited to corrupt memory.
4) Another unspecified error can be exploited to corrupt memory.
5) An integer overflow error in JPEGFormat.aip when calculating the size of a buffer to allocate based on the image dimensions and colour depth can be exploited to cause a heap-based buffer overflow via a specially crafted JPEG image file.
NOTE: This vulnerability is confirmed in CS5 bundling JPEGFormat.aip version 15.0.128.0.
Successful exploitation of the vulnerabilities may allow execution of arbitrary code.
The vulnerabilities are reported in Adobe Illustrator version CS5.5 and prior for Windows and Macintosh. Other versions may also be affected.
Solution
Upgrade to Adobe Illustrator CS6.
References:
Adobe (APSB12-10):
Secunia:
 
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 20 اردیبهشت 1391

امتیاز

امتیاز شما
تعداد امتیازها:0