Adobe PNG File Handling Buffer Overflow

By admin | Apr 30, 2007

adobe_logo.jpgThis sort of exploit is harder to pull off because of the need for user action. But, as PT Barnum used to say “there is a sucker born every day.” Maybe that should be every hour. In any case, Secunia has issued a highly critical warning in regards to how some Photoshop products handle these PNG files. It seems that specially crafted PNG files will allow remote execution of arbitrary code on the victim machine.

“The vulnerability is caused due to a boundary error within the PNG.8BI Photoshop Format Plugin when handling PNG files. This can be exploited to cause a stack-based buffer overflow via a specially crafted PNG file.”

Products affected:
-Photoshop CS2
-Photoshop CS3
-Photoshop Elements 5.0
-Corel Paint Shop Pro 11.20

Sources: Secunia, Milw0rm



Related Posts:

Critical Trillian, WinAmp Security Flaws
Heads up for two newly flagged issues if you use either the online instant messaging program "Trillian", and the media...

“Extremely Critical” Winamp Security Issue
That would be straight from the horse's mouth, so to speak. Secunia issued an extremely critical security bulletin for...

Real Player Problems
Real Networks has issued a bulletin and patches for a recent string of vulnerabilities. The vulnerabilities are: Exploit 1: To...

Adobe Reader/Acrobat Vulnerability
Adobe has announced a vulnerability in their acrobat and reader series. The vulnerability affects: Adobe Acrobat 5.x Adobe Acrobat 6.x Adobe Acrobat...

The system DLL user32.dll was relocated in memory
Ahhh, the joys of owning a computer! If you have received this message, it is due to a recent...

Leave a Comment

If you would like to make a comment, please fill out the form below.

Name (required)

Email (required)

Website

Comments

© 2007 PaulTech Network, - Daily Blog Tips Themes