Accessibility

Security bulletin

Security update available for Adobe Photoshop CS5

Release date: December 17, 2010

Vulnerability identifier: APSB10-30

CVE number: CVE-2010-3127

Platform: Windows

Summary

An important library-loading vulnerability has been identified in Adobe Photoshop CS5 12.0.1 and earlier on the Windows platform. Adobe recommends users update their Adobe Photoshop CS5 installations using the instructions provided below.

Affected software versions

Adobe Photoshop CS5 12.0.1 and earlier for Windows

Solution

For convenience and reliability, we highly recommend that users apply this update directly from within Photoshop. To do so, choose "Help > Updates..." in Photoshop CS5 and apply all the necessary updates that are available.
Users can also find the appropriate update here:
http://www.adobe.com/support/downloads/detail.jsp?ftpID=4949

Severity rating

Adobe categorizes this as a important update and recommends that users apply the latest update for their product installation.

Details

An important library-loading vulnerability has been identified in Adobe Photoshop CS5 12.0.1 and earlier on the Windows platform. Exploitation of this vulnerability (CVE-2010-3127) could allow an attacker to load arbitrary libraries by tricking a user into opening a file located on a remote WebDAV or SMB share. Adobe recommends Photoshop CS5 users update their product installations using the instructions provided in the "Solution" section above.