Lucene search

K

Kaspersky LabKLA10029

HistoryAug 30, 2012 - 12:00 a.m.

KLA10029 ACE vulnerabilities in Adobe Photoshop

2012-08-3000:00:00

Kaspersky Lab

threats.kaspersky.com

49

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.355 Low

EPSS

Percentile

97.1%

Detect date:

08/30/2012

Severity:

Critical

Description:

Buffer overflow vulnerabilities were found in Adobe Photoshop. By exploiting this vulnerability malicious users can execute arbitrary code. These vulnerabilities can be exploited from the network at a point related to an unknown application via a specially designed file or TIFF image with SGI24LogLum compression.

Affected products:

Adobe Photoshop CS6 version 13.0 for Windows and Mac OS

Solution:

Update to latest version
Photoshop

Original advisories:

Impacts:

ACE

Related products:

Adobe Photoshop CS6

CVE-IDS:

References

www.adobe.com/support/security/bulletins/apsb12-20.html

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4170

statistics.securelist.com/vulnerability-scan/month

threats.kaspersky.com/en/product/Adobe-Photoshop-CS6/

www.adobe.com/products/photoshop.html

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.355 Low

EPSS

Percentile

97.1%

Related for KLA10029

cvelist1 checkpoint_advisories3 seebug1 thn1 prion1 cve1 openvas4 nessus2