ID: IRCNE2012061510
Date: 2012-01-06
According to "computerworld", Adobe released several security updates on Monday, addressing nine arbitrary code execution vulnerabilities that affect Adobe Photoshop and Adobe Illustrator CS5.x for Windows and Mac OS X.
Back in May, Adobe alerted users about the existence of eight security vulnerabilities in the CS5.x versions of Photoshop, Illustrator and Flash Professional.
At the time, the company advised customers to upgrade to the CS6 versions of those products, which aren't affected by those vulnerabilities, or to exercise caution when opening files from unknown sources if upgrading is not possible.
On Monday, Adobe released security updates for Photoshop CS5 (12.0) and Photoshop CS5.1 (12.1) that address three arbitrary code execution vulnerabilities present in those products. If they were left unpatched, hackers could exploit them to take control of the operating system by tricking users into opening maliciously crafted files.
At the same time, the company released security patches for Adobe Illustrator CS5 (15.0) and Adobe Illustrator CS5.5 (15.1). These address six vulnerabilities that could be exploited in a similar manner and for the same goal as the Photoshop ones.
Adobe Flash Professional CS5.5.1 remains vulnerable to a buffer overflow vulnerability that can lead to arbitrary code execution. The company is working on a patch and will release it at a later date.
Related Link:
Adobe: Critical security holes in Shockwave, Photoshop, Illustrator
- 3