Adobe releases Flash Player, Photoshop updates to address security vulnerabilities

Adobe has issued a pair of “critical” updates o address security vulnerabilities for two widely-used applications :

Flash Player update:
Critical vulnerabilities have been identified in Adobe Flash Player that could allow an attacker who successfully exploits these potential vulnerabilities to take control of the affected system. A malicious SWF must be loaded in Flash Player by the user for an attacker to exploit these potential vulnerabilities. Users are recommended to update to the most current version of Flash Player available for their platform. Adobe recommends all users of Adobe Flash Player 9.0.45.0 and earlier versions upgrade to the newest version 9.0.47.0 (Win, Mac, Solaris) or 9.0.48.0 (Linux).

More info and download link here.

Photoshop CS2 and CS3 updates:
Critical vulnerabilities have been identified in Photoshop CS2 and CS3 that could allow an attacker who successfully exploits these potential vulnerabilities to take control of the affected system. A malicious BMP, DIB, RLE, or PNG must be opened in Photoshop by the user for an attacker to exploit these potential vulnerabilities. Users are recommended to update their installations with the patches provided below, and Adobe encourages all customers to be cautious before opening any unknown file, regardless of which application they may be using. Adobe recommends all Photoshop CS2 and Photoshop CS3 users update their installations.

More info and download link here.

21 Comments

  1. Adobe is turning into Quark/Microsoft.

    Thanks Adobe for making CS3 on a Mac look exactly like CS3 on Windows. By placing the “Close Window X” on the right side of the windows.

    Someone please give me a viable alternative to Adobe’s (not-so) Suite.

  2. Wait, I thought that OSX was impossible to crack! Do you mean there is a security problem that could cause OSX to be taken over and owned? Oh that is rich!

    So how much money will Steve Jobs pay off the newspapers to not publish stories about security hacks against OSX from this? When will congress sue Apple for it’s draconian practices against users that purchase an ipod and then must buy music from the Apple store? When will they be sued for locking the phone to one supplier and locking out critical features so they can overcharge for them later?

    Between business practices and environmental issues Apple is the worst company to do business with in the world.

  3. There’s a special place in hell for Microsoft Astroturfers.

    You’ll be chained to a desk and be forced to surf the net on a vintage Dell using Windows ME without a firewall or anti-virus software.

    Let’s see you post FUD with that setup.

  4. Mac Realist,
    Your lack of intellect is showing. Not only because you choose to entertain yourself by posting troll comments on a Mac news board (if that isn’t evidence of stupidity there’s little else to say) but because you then go on to make incredibly uninformed and ignorant statements.
    The facts are these:
    1. Newspapers don’t get paid not to publish stories. To believe this is literally insanity.
    2. Congress doesn’t “sue” people or companies
    3. The use of the word Draconian does not apply here…you are mis-using the term.
    4. Apple does not require iPod users to buy music from the iTunes Music Store.
    5. Apple won’t be “sued” for locking a product to a supplier. This is just business.
    6. Critical features of the iPhone are not “locked out” and in fact it’s always been Apple’s practice (and as they have announced) to update systems for free. Watch for a news making update in the next 90 days. It will ADD features… not unlock them. That’s the nature of software.
    7. You clearly need to get a genuine life. I recommend you stop using the internet and spend more time outdoors.

  5. Welcome to Trolls 101!
    Good morning class. Please take notes.
    1. Trolls are not to be taken seriously. Ever.
    2. Trolls are bored and lonely and feed off angry replies.
    3. Do not feed the troll. Unfed, starving trolls slink elsewhere or wither and die.

    Class dismissed. Thank you for your time.

  6. No silly boy, only on windows is it very likely a root exploit.
    (But yet another root exploit for windows is hardly news.)

    In OS X simply getting execution by exploiting a poorly written app doesn’t get you root access.

  7. wow, that is some exploit.

    4 picture types that must be opened in a specific program. i bet there is an “in the wild” exploit of something that obscure.

    i wonder if they are real system level or only user level. if system level, adobe has likely been breaking the rules of *nix programming again…..

Reader Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.