Latest News

US regulator bans imports of new foreign-made routers

Phillip Britt exits Aussie Broadband board

TeamPCP hackers deface Aqua Security's internal GitHub

Rodd & Gunn eyes headless ecommerce

Home Affairs extends non-mainframe IBM deal early for $35m

Flaw in Adobe Photoshop could compromise systems

By Dan Kaplan

Apr 27 2007 11:13AM

A popular Adobe image-editing program contains a major vulnerability for which public exploit code is available, researchers said today.

The flaw, rated "highly critical" by tracking firm Secunia, is caused by the improper processing of bitmap files in Adobe Photoshop and can lead to a stack-based buffer overflow. If successful, attackers can launch arbitrary code that could compromise a user's system by duping users into opening a malicious file.

While public code has been posted by a researcher named Marsu, there are no reports of active exploits.

The bug resides in Photoshop CS2 and CS3, according to a Secunia advisory. As users await a patch, experts recommend not opening untrusted bitmap files, with extensions .bmp, .dib and .rle.

An Adobe spokesperson could not be reached for comment.

Got a news tip for our journalists? Share it with us anonymously here.

Tags:

adobe compromise could flaw in photoshop security systems

Partner Content

How Optus brings your mobile-first security strategy to life

Partner Content How Optus brings your mobile-first security strategy to life

Beyond Compliance: How Australia's Aged Care Reforms Create an Innovation Imperative

Partner Content Beyond Compliance: How Australia's Aged Care Reforms Create an Innovation Imperative

Cyconsol Unlocks Growth Potential for Cyber Vendors in Australia

Promoted Content Cyconsol Unlocks Growth Potential for Cyber Vendors in Australia

How digital pharmacy platforms are redefining healthcare in Australia

Promoted Content How digital pharmacy platforms are redefining healthcare in Australia

Sponsored Whitepapers

5 reasons to adopt a mobile first security strategy

5 reasons to adopt a mobile first security strategy

Uncomplicate IT Service Delivery with AI Agents

Uncomplicate IT Service Delivery with AI Agents

Getting ahead of the tech: what’s next for Australian organisations in digital transformation

Getting ahead of the tech: what’s next for Australian organisations in digital transformation

Fintech compliance made fast and secure

Fintech compliance made fast and secure

How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide

How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide

Events

Most Read Articles

CBA builds two AI agents to boost cyber defences

CBA builds two AI agents to boost cyber defences

Researchers uncover 'Darksword' iPhone spyware

Researchers uncover 'Darksword' iPhone spyware

Stryker contains cyber attack on its Microsoft environment

Stryker contains cyber attack on its Microsoft environment

Exploited Google Chrome zero-days added to US must-patch list

Exploited Google Chrome zero-days added to US must-patch list

Sydney-based AI-cloud waste startup raises $3m

Sydney-based AI-cloud waste startup raises $3m

Brennan uses NiCE to modernise its contact centre

Brennan uses NiCE to modernise its contact centre

Impact Awards: Tecala slashes customer response times for fintech IQumulate

Impact Awards: Tecala slashes customer response times for fintech IQumulate

Interactive introduces private cloud platform

Interactive introduces private cloud platform

Digital61 expands cybersecurity portfolio

Digital61 expands cybersecurity portfolio

Most popular tech stories