Adobe has announced that it has discovered a serious vulnerability in many versions of Photoshop which can lead to loss of system control. Sounds scary!
UPDATE:
Adobe has modified their Security Bulletin with the following info: “We are in the process of resolving these vulnerabilities in Adobe Photoshop CS5.x, and will update this Security Bulletin once the patch is available. Users may monitor the latest information on the Adobe Product Security Incident Response Team blogย or by subscribing to the Adobe RSS feed. ”
Previous posting:
According to the Adobe Security Bulletin, users of Photoshop CS5 and earlier (read: CS4, CS3, CS2, etc.) on both Macintosh and Windows platforms are subject to this security issue when opening .Tif or Tiff files which have been modified to take advantage of this exploit.
They claim that the just released version of Photoshop CS6 is free from this weak spot.
They actually term CS6 as an ‘upgrade’ in this way – “Adobe has released Adobe Photoshop CS6, which addresses these vulnerabilities. For users who cannot upgrade to Adobe Photoshop CS6, Adobe recommends users follow security best practices and exercise caution when opening files from unknown or untrusted sources.”
Huh.
So, all the possible gazilllions of users on non-CS6 versions (like almost everybody as of now, since CS6 just started shipping this week!) are S.O.L. unless they jump to it, and ‘upgrade’ to CS6?
Maybe not, since everyone needs up-top-date security software anyway these days.
But still…
Adobe does note that they aren’t aware of any existing attacks using this vulnerability.
But, if you do get such a file,ย that special someone now in your life, your significant malicious other,
gets control of your now affected infected system.
Yicky!
So.
Practice safe computing, my dears. As always, make sure you know where that file has been!
Well. Happy digiting till next time, darlings,
AnnieAjar
Sounds like Adobe is desperate to get us to upgrade! Why don’t they just issue a patch?
I can’t say what or why Adobe does or doesn’t do anything ๐ but,
it is probably very expensive to support old versions of any software.
Not an excuse, but just a possible reason?
It’s very expensive to keep buying new software too when the old stuff is doing just fine…mostly. I use cs4 and was planning on upgrading to cs6 when it came out. Now I find out cs6 is not upgradable without having cs5 already. Is that for real?
My opinion is that this is an adobe scare to get people to buy CS6.
Forget it Adobe. I don’t buy it.
Find another trick.
I know nothing of the marketing, or the people who do it, but the people who actually build and refine the software are really dedicated to making the best product they can. I highly doubt that they are involved in a scare scam. That said, weird stuff happens in the world.
Upon thought…No, I don’t buy the ‘scare’ theory. But, I’ve been so wrong about so many things! hah! ๐