Adobe Photoshop Album Starter Edition BMP image header buffer overflow

2008-05-08T00:00:00
ID SAINT:069181E9466743358EB844E233A68985
Type saint
Reporter SAINT Corporation
Modified 2008-05-08T00:00:00

Description

Added: 05/08/2008
CVE: CVE-2008-1765
BID: 28874
OSVDB: 44579

Background

Adobe Photoshop Album Starter Edition is free software for editing and sharing photos.

Problem

A buffer overflow vulnerability in Adobe Photoshop Album Starter Edition allows command execution when a user opens a BMP image file containing a specially crafted header.

Resolution

See the Adobe Security Advisory and apply a patch when available.

References

<http://www.adobe.com/support/security/advisories/apsa08-04.html>
<http://archives.neohapsis.com/archives/fulldisclosure/2008-04/0551.html>

Limitations

Exploit works on Adobe Photoshop Album Starter 3.2 on Windows XP SP2 or Windows Vista SP0.

Platforms

Windows