Vulnerabilities > CVE-2008-1765 - Buffer Errors vulnerability in Adobe Photoshop 3.2

047910
CVSS 9.3 - CRITICAL
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
adobe
CWE-119
critical
exploit available
NVD
Published: 2008-04-23
Updated: 2017-09-29

Summary

Buffer overflow in Adobe Photoshop Album Starter Edition 3.2, and possibly After Effects CS3, allows user-assisted remote attackers and physically proximate attackers to execute arbitrary code via a BMP file with an invalid image header. NOTE: the related issue in Photoshop CS3 is already covered by CVE-2007-2244.

Vulnerable Configurations

Part Description Count
Application
Adobe
1

Common Weakness Enumeration (CWE)

Common Attack Pattern Enumeration and Classification (CAPEC)

  • Buffer Overflow via Environment Variables
    This attack pattern involves causing a buffer overflow through manipulation of environment variables. Once the attacker finds that they can modify an environment variable, they may try to overflow associated buffers. This attack leverages implicit trust often placed in environment variables.
  • Overflow Buffers
    Buffer Overflow attacks target improper or missing bounds checking on buffer operations, typically triggered by input injected by an attacker. As a consequence, an attacker is able to write past the boundaries of allocated buffer regions in memory, causing a program crash or potentially redirection of execution as per the attackers' choice.
  • Client-side Injection-induced Buffer Overflow
    This type of attack exploits a buffer overflow vulnerability in targeted client software through injection of malicious content from a custom-built hostile service.
  • Filter Failure through Buffer Overflow
    In this attack, the idea is to cause an active filter to fail by causing an oversized transaction. An attacker may try to feed overly long input strings to the program in an attempt to overwhelm the filter (by causing a buffer overflow) and hoping that the filter does not fail securely (i.e. the user input is let into the system unfiltered).
  • MIME Conversion
    An attacker exploits a weakness in the MIME conversion routine to cause a buffer overflow and gain control over the mail server machine. The MIME system is designed to allow various different information formats to be interpreted and sent via e-mail. Attack points exist when data are converted to MIME compatible format and back.

Exploit-Db

descriptionAdobe Album Starter 3.2 Unchecked Local Buffer Overflow Exploit. CVE-2008-1765. Local exploit for windows platform
fileexploits/windows/local/5479.txt
idEDB-ID:5479
last seen2016-01-31
modified2008-04-21
platformwindows
port
published2008-04-21
reporterc0ntex
sourcehttps://www.exploit-db.com/download/5479/
titleAdobe Album Starter 3.2 Unchecked Local Buffer Overflow Exploit
typelocal

Saint

bid28874
descriptionAdobe Photoshop Album Starter Edition BMP image header buffer overflow
idmisc_adobe_photoshopbmp2
osvdb44579
titleadobe_bmp_header
typeclient

Seebug

bulletinFamilyexploit
descriptionBUGTRAQ ID: 28874 CVE(CAN) ID: CVE-2008-1765 Adobe Photoshop Album Starter Edition是Adobe公司专为处理相片的用户设计的Photoshop简化版本,允许用户更容易的修改、美化照片。 Album Starter在渲染图形之前没有正确地验证BMP图形头是否有效,如果用户受骗打开了恶意的bmp图形文件的话,就可能触发缓冲区溢出,导致执行任意代码。此外,Album Starter所运行的一个服务自动查找连接到系统的设备(如相机或USB驱动),一旦找到了这类设备就会自动查找图形文件并自动导入图形,因此攻击者还可以通过将移动设备连接到计算机来触发这个溢出。 Adobe Photoshop Album Starter Edition 3.2 Adobe ----- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: <a href=http://www.adobe.com target=_blank>http://www.adobe.com</a>
idSSV:3208
last seen2017-11-19
modified2008-04-23
published2008-04-23
reporterRoot
sourcehttps://www.seebug.org/vuldb/ssvid-3208
titleAdobe Photoshop Album Starter Edition BMP图形头处理缓冲区溢出漏洞

References