Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:28533
HistorySep 04, 2012 - 12:00 a.m.

Secunia Research: Adobe Photoshop TIFF SGI24LogLum Decompression Buffer Overflow

2012-09-0400:00:00
vulners.com
17
JSON

======================================================================

                 Secunia Research 03/09/2012
  • Adobe Photoshop TIFF SGI24LogLum Decompression Buffer Overflow -

======================================================================
Table of Contents

Affected Software…1
Severity…2
Vendor's Description of Software…3
Description of Vulnerability…4
Solution…5
Time Table…6
Credits…7
References…8
About Secunia…9
Verification…10

======================================================================
1) Affected Software

  • Adobe Photoshop CS5
  • Adobe Photoshop CS5.1
  • Adobe Photoshop CS6

NOTE: Other versions may also be affected.

======================================================================
2) Severity

Rating: Highly Critical
Impact: System Compromise
Where: Remote

======================================================================
3) Vendor's Description of Software

"Adobe Photoshop CS6 software delivers even more imaging magic, new
creative options, and the Adobe Mercury Graphics Engine for blazingly
fast performance.".

Product Link:
http://www.adobe.com/products/photoshop.html

======================================================================
4) Description of Vulnerability

Secunia Research has discovered a vulnerability in Adobe Photoshop,
which can be exploited by malicious people to compromise a user's
system.

The vulnerability is caused by insufficient validation in
Photoshop.exe when decompressing SGI24LogLum-compressed TIFF images.
This can be exploited via a specially crafted TIFF image to cause a
heap-based buffer overflow.

Successful exploitation may allow execution of arbitrary code.

======================================================================
5) Solution

Update to version 12.0.5, 12.1.1, or 13.0.1.

======================================================================
6) Time Table

27/03/2012 - Vendor notified.
27/03/2012 - Vendor response.
08/05/2012 - Vulnerability addressed in CS5 and CS5.1 via APSB12-11.
04/07/2012 - Status update requested.
04/07/2012 - Vendor confirms fix in APSB12-11 and confirms that CS6
is still vulnerable. Fix to be included in next update.
30/08/2012 - APSB12-20 released. Vulnerability fixed, but no mention
of it in the security bulletin. Vendor contacted for
status update.
31/08/2012 - Vendor confirmation that vulnerability was addressed.
APSB12-11 and APSB12-20 updated accordingly.
03/09/2012 - Public disclosure.

======================================================================
7) Credits

Discovered by Carsten Eiram, Secunia Research.

======================================================================
8) References

The Common Vulnerabilities and Exposures (CVE) project has assigned
CVE-2012-0275 for the vulnerability.

======================================================================
9) About Secunia

Secunia offers vulnerability management solutions to corporate
customers with verified and reliable vulnerability intelligence
relevant to their specific system configuration:

http://secunia.com/advisories/business_solutions/

Secunia also provides a publicly accessible and comprehensive advisory
database as a service to the security community and private
individuals, who are interested in or concerned about IT-security.

http://secunia.com/advisories/

Secunia believes that it is important to support the community and to
do active vulnerability research in order to aid improving the
security and reliability of software in general:

http://secunia.com/secunia_research/

Secunia regularly hires new skilled team members. Check the URL below
to see currently vacant positions:

http://secunia.com/corporate/jobs/

Secunia offers a FREE mailing list called Secunia Security Advisories:

http://secunia.com/advisories/mailing_lists/

======================================================================
10) Verification

Please verify this advisory by visiting the Secunia website:
http://secunia.com/secunia_research/2012-29/

Complete list of vulnerability reports published by Secunia Research:
http://secunia.com/secunia_research/

======================================================================

Related

securityvulns 1
cve 1
prion 1
openvas 8
nessus 3
securityvulns
securityvulns
Adobe Photoshop buffer overflow
2012-09-04 00:00:00
cve
cve
CVE-2012-0275
2012-09-04 11:04:00
prion
prion
Heap overflow
2012-09-04 11:04:00
openvas
openvas
Adobe Photoshop PNG Image Processing Buffer Overflow Vulnerabilities - Windows
2012-09-03 00:00:00
Adobe Photoshop PNG Image Processing Buffer Overflow Vulnerabilities (Windows)
2012-09-03 00:00:00
Adobe Photoshop PNG Image Processing Buffer Overflow Vulnerabilities (Mac OS X)
2012-09-03 00:00:00
nessus
nessus
Adobe Photoshop CS6 for Mac Multiple RCE Vulnerabilities (APSB12-20) (Mac OS X)
2012-09-21 00:00:00
Adobe Photoshop CS6 Multiple Buffer Overflow Vulnerabilities (APSB12-20)
2012-09-04 00:00:00
Adobe Photoshop < CS5 / CS5.1 Multiple Arbitrary Code Execution Vulnerabilities (APSB12-11)
2012-05-17 00:00:00
JSON
Related for SECURITYVULNS:DOC:28533
securityvulns1cve1prion1openvas8nessus3