Adobe Photoshop PNG file handling buffer overflow

2007-05-17T00:00:00
ID SAINT:BD92B19237CCF717D5A466462D1179F6
Type saint
Reporter SAINT Corporation
Modified 2007-05-17T00:00:00

Description

Added: 05/17/2007
CVE: CVE-2007-2365
BID: 23698
OSVDB: 35465

Background

Adobe Photoshop is an application for editing digital images.

Problem

A buffer overflow vulnerability in Adobe Photoshop allows command execution when a user opens a specially crafted PNG image file.

Resolution

Do not open PNG image files in Photoshop.

References

<http://secunia.com/advisories/25044>

Limitations

Exploit works on Adobe Photoshop CS2 9.0 and requires a user to open the exploit file.

Platforms

Windows XP