Adobe Photoshop CC APSB18-28 Multiple Unspecified Memory Corruption Vulnerabilities

Bugtraq ID:	105123
Class:	Unknown
CVE:	CVE-2018-12810 CVE-2018-12811
Remote:	Yes
Local:	No
Published:	Aug 21 2018 12:00AM
Updated:	Aug 21 2018 12:00AM
Credit:	Kushal Arvind Shah of Fortinet's FortiGuard Labs.
Vulnerable:	Adobe Photoshop CC 2018 19.1.5 Adobe Photoshop CC 2018 19.1.4 Adobe Photoshop CC 2018 19.1.3 Adobe Photoshop CC 2018 19.1.2 Adobe Photoshop CC 2018 19.1.1 Adobe Photoshop CC 2018 19.1 Adobe Photoshop CC 2017 18.1.5 Adobe Photoshop CC 2017 18.1.4 Adobe Photoshop CC 2017 18.1.3 Adobe Photoshop CC 2017 18.1.2 Adobe Photoshop CC 2017 18.1.1 Adobe Photoshop CC 2017 18.0.1 Adobe Photoshop CC 2017 18.1
Not Vulnerable:	Adobe Photoshop CC 2018 19.1.6 Adobe Photoshop CC 2017 18.1.6

Adobe Photoshop CC APSB18-28 Multiple Unspecified Memory Corruption Vulnerabilities

Adobe Photoshop CC is prone to multiple unspecified memory-corruption vulnerabilities.

An attacker can exploit these issues to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions.

The following products are vulnerable:

Versions prior to Photoshop CC 2018 19.1.5
Versions prior to Photoshop CC 2017 18.1.5

Adobe Photoshop CC APSB18-28 Multiple Unspecified Memory Corruption Vulnerabilities

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Adobe Photoshop CC APSB18-28 Multiple Unspecified Memory Corruption Vulnerabilities

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Adobe Photoshop CC APSB18-28 Multiple Unspecified Memory Corruption Vulnerabilities

References:

• Adobe Homepage (Adobe)
  
• Adobe Photoshop CC - Homepage (Adobe)
  
• Security updates available for Adobe Photoshop CC | APSB18-28 (Adobe)