Adobe Photoshop users are being warned to remain vigilant after a pair of vulnerabilities were reported in recent days.
The vulnerabilities affect the way that Photoshop processes certain types of images, and each can be exploited when a user opens a specially-crafted .png, .bmp, .dib or .rle bitmap image files. Both vulnerabilities affect Photoshop CS2 and CS3. The .png vulnerability also affects Photoshop Elements 5.x.
When exploited, both vulnerabilities could allow an attacker to remotely execute code on a user's system. No active attacks targeting the vulnerabilities have been reported. Discovery of both vulnerabilities is credited to a security reearcher by the name of "Marsu" on the milw0rm.com vulnerability disclosure site.
Security company Secunia rated both of the vulnerabilities as "highly critical", the company's second-highest alert level. Secunia advises users not to open untrusted .png, .bmp, .dib and .rle files.
A spokesperson said that the company is currently investigating the reports and declined any further comment.
First flaws surface in new Photoshop
By
Shaun Nichols
on May 1, 2007 4:11PM
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
MSPs with a robust data protection strategy will achieve market success
.jpg&h=142&w=230&c=1&s=1)
New Microsoft CSP rules? Here’s how MSPs can stay ahead with Ingram Micro
Beyond the box: How Crayon Is Redefining Distribution for the Next Era
Shared Intelligence is the Real Competitive Edge Partners Enjoy with Crayon
.png&h=142&w=230&c=1&s=1)
How mandatory climate reporting is raising the bar for corporate leadership
.jpg&w=100&c=1&s=0)
_(8).jpg&w=100&c=1&s=0)
