HTTP: Adobe Photoshop Asset Elements Stack Buffer Overflow
A buffer overflow vulnerability has been reported in Adobe Photoshop. The vulnerability is due to insufficient validation of Collada asset elements. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to download a malicious file. This can lead to arbitrary code execution in the context of the affected application.
Extended Description
Adobe Photoshop is prone to a stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied data. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Successful exploits will compromise the affected application and possibly the underlying computer. Failed exploit attempts may cause a denial-of-service condition. Adobe Photoshop CS5 and CS5.1 are vulnerable; other versions may also be affected.
Affected Products
Adobe photoshop
Short Name
HTTP:STC:ADOBE:PHOTOSHOP-ASSET
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Adobe Asset Buffer CVE-2012-2052 Elements Overflow Photoshop Stack bid:53464
Release Date
10/02/2012
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3678
False Positive
Unknown
Vendors
Adobe