Adobe Security Advisory for Illustrator CS4 and CS3
on Dec 11in News, Softwares tagged by jamesAdobe has released a security bulletin for its Adobe Illustrator CS3 and CS4. Adobe is aware of a report of a buffer overflow vulnerability in the said software that could lead to arbitrary code execution. Adobe plans to make available an update to Adobe Illustrator to resolve the issue by January 8, 2010. Adobe further recommends customers to avoid opening .eps files from unknown or untrusted sources in Illustrator until a patch is available.
Full details of the security bulletin is as follows:
Affected software versions
Adobe Illustrator CS4 (14.0.0)
Adobe Illustrator CS3 (13.0.3 and earlier)
Severity rating
Adobe categorizes this as a critical issue and recommends that users avoid opening .eps files from unknown or untrusted sources in Illustrator until a patch is available.
Details
Adobe is aware of a report of a buffer overflow vulnerability in Adobe Illustrator CS4 and Adobe Illustrator CS3 that could lead to arbitrary code execution. A successful exploit of the vulnerability would require a local user to take the action of opening a malicious .eps file in Illustrator. Adobe plans to make available an update to Adobe Illustrator to resolve the issue by January 8, 2010. Adobe recommends customers avoid opening .eps files from unknown or untrusted sources in Illustrator until a patch is available.
Share this Post.
There are no comments yet, add one below.