Lucene search

SAINT CorporationSAINT:F6270EE780A78D2020EF368CDA145B6F

HistoryMay 08, 2008 - 12:00 a.m.

Adobe Photoshop Album Starter Edition BMP image header buffer overflow

2008-05-0800:00:00

SAINT Corporation

download.saintcorporation.com

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.649

Percentile

97.9%

JSON

Added: 05/08/2008
CVE: CVE-2008-1765
BID: 28874
OSVDB: 44579

Background

Adobe Photoshop Album Starter Edition is free software for editing and sharing photos.

Problem

A buffer overflow vulnerability in Adobe Photoshop Album Starter Edition allows command execution when a user opens a BMP image file containing a specially crafted header.

Resolution

See the Adobe Security Advisory and apply a patch when available.

References

<http://www.adobe.com/support/security/advisories/apsa08-04.html>
<http://archives.neohapsis.com/archives/fulldisclosure/2008-04/0551.html>

Limitations

Exploit works on Adobe Photoshop Album Starter 3.2 on Windows XP SP2 or Windows Vista SP0.

Platforms

Windows

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.649

Percentile

97.9%

JSON

Related for SAINT:F6270EE780A78D2020EF368CDA145B6F