Accessibility

Security bulletin

Security update available for Adobe Illustrator CS5

Release date: December 3, 2010

Vulnerability identifier: APSB10-29

CVE number: CVE-2010-3152

Platform: Windows

Summary

An important library-loading vulnerability has been identified in Adobe Illustrator CS5 15.0.1 and earlier on the Windows platform. Adobe recommends users update their Adobe Illustrator CS5 installations using the instructions provided below.

Affected software versions

Adobe Illustrator CS5 15.0.1 and earlier for Windows

Solution

Adobe recommends Adobe Illustrator CS5 users update their installation using the instructions provided here:
http://www.adobe.com/support/downloads/detail.jsp?ftpID=4910.

Severity rating

Adobe categorizes this as a important update and recommends that users apply the latest update for their product installation.

Details

An important library-loading vulnerability has been identified in Adobe Illustrator CS5 15.0.1 and earlier on the Windows platform. Exploitation of this vulnerability (CVE-2010-3152) could allow an attacker to load arbitrary libraries by tricking a user into opening a file located on a remote WebDAV or SMB share. Adobe recommends Illustrator CS5 users update their product installations using the instructions provided in the "Solution" section above.