26 April 2007, 11:22

Malware infestation through bmp files in Photoshop

A bug has been detected in the Creative Suite 2 and Creative Suite 3 versions of the Adobe Photoshop image editing software, encountered when malformed bitmap files are processed. These files with bmp, dib or rle extensions may trigger a buffer overflow that could be exploited by hackers for arbitrary code execution.

Marsu, who has detected this hole, has provided a sample exploit, which can be used to create manipulated bitmap files to exploit the problem, but does not provide more detailed information on this flaw. So far, Adobe has not published an update to fix this vulnerability. Until a patch is available, users of the affected Photoshop versions are advised only to open bitmap files from trusted sources.

Channels

Services

Malware infestation through bmp files in Photoshop

Also on The H:

Content Security Policy halts XSS in its tracks

Skype's ominous link checking: Facts and speculation

Password protection for everyone

Two clicks for more privacy

What's new in SUSE Linux Enterprise 11 SP3

What's new in Fedora 19

What's new in Linux 3.10

Free Software post-PRISM

Kernel Log: Coming in 3.10 (Part 4) - Drivers

The trouble with "Business Source"

Kernel Log: Coming in 3.10 (Part 3) - Infrastructure

Whatever happened to Google?

Java EE 7 at a glance

Continuous database migration with Liquibase and Flyway

Unit testing with Node.js

Ruby 2.0 - the 20th birthday present

Linux Mint 15: A better Ubuntu for the desktop

What's new in Linux 3.9

Replacing Google Reader

Attacking TrueCrypt

The H

The H Open

The H Security

The H Developer

The H Internet Toolkit