Adobe has announced that it has discovered a serious vulnerability in many versions of Photoshop which can lead to loss of system control. Sounds scary!
Adobe has modified their Security Bulletin with the following info: “We are in the process of resolving these vulnerabilities in Adobe Photoshop CS5.x, and will update this Security Bulletin once the patch is available. Users may monitor the latest information on the Adobe Product Security Incident Response Team blog or by subscribing to the Adobe RSS feed. ”
According to the Adobe Security Bulletin, users of Photoshop CS5 and earlier (read: CS4, CS3, CS2, etc.) on both Macintosh and Windows platforms are subject to this security issue when opening .Tif or Tiff files which have been modified to take advantage of this exploit.
They claim that the just released version of Photoshop CS6 is free from this weak spot.
They actually term CS6 as an ‘upgrade’ in this way – “Adobe has released Adobe Photoshop CS6, which addresses these vulnerabilities. For users who cannot upgrade to Adobe Photoshop CS6, Adobe recommends users follow security best practices and exercise caution when opening files from unknown or untrusted sources.”
So, all the possible gazilllions of users on non-CS6 versions (like almost everybody as of now, since CS6 just started shipping this week!) are S.O.L. unless they jump to it, and ‘upgrade’ to CS6?
Maybe not, since everyone needs up-top-date security software anyway these days.
Adobe does note that they aren’t aware of any existing attacks using this vulnerability.
But, if you do get such a file, that special someone now in your life, your significant malicious other,
gets control of your now affected infected system.
Practice safe computing, my dears. As always, make sure you know where that file has been!
Well. Happy digiting till next time, darlings,