Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Adobe Photoshop BOF and Use After Free Vulnerabilities (Windows)
Information
Severity
Severity
Critical
Family
Family
General
CVSSv2 Base
CVSSv2 Base
10.0
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Solution Type
Solution Type
Vendor Patch
Created
Created
11 years ago
Modified
Modified
5 years ago
Summary
This host is installed with Adobe Photoshop and is prone to buffer overflow and use after free vulnerabilities.
Insight
Insight
The flaws are caused by - An insufficient input validation while decompressing TIFF images. - An input sanitisation error when parsing TIFF images can be exploited to cause a heap-based buffer overflow via a specially crafted file.
Affected Software
Affected Software
Adobe Photoshop version prior to CS6 on Windows
Solution
Solution
Apply the patch for Adobe Photoshop CS5 and CS5.1, Or upgrade to Adobe Photoshop version CS6 or later.