PT-2007-3698 · Adobe · Photoshop Elements+3

Published

2007-04-30

Updated

2017-10-11

CVE-2007-2365

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Adobe Photoshop versions CS2 and CS3 Adobe Photoshop Elements version 5.0 Adobe Illustrator version CS3 Adobe GoLive version 9

Description A buffer overflow issue allows user-assisted remote attackers to execute arbitrary code via a crafted .PNG file. This issue can be exploited when a user opens a malicious .PNG file, potentially leading to the execution of arbitrary code.

Recommendations For Adobe Photoshop versions CS2 and CS3, update to a version that includes a fix for this issue. For Adobe Photoshop Elements version 5.0, update to a version that includes a fix for this issue. For Adobe Illustrator version CS3, update to a version that includes a fix for this issue. For Adobe GoLive version 9, update to a version that includes a fix for this issue.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2007-2365

Affected Products

Golive

Illustrator

Photoshop

Photoshop Elements

PT-2007-3698 · Adobe · Photoshop Elements+3

CVE-2007-2365

Weakness Enumeration

Related Identifiers

Affected Products

References · 17