Adobe Issues Free Security Updates for CS5 Vulnerabilities After Backpedalling On Costly CS6 Upgrade
Adobe Creative Suite 5 versions of Illustrator, Photoshop and Flash Professional contain a critical vulnerarbility in them, that can allow the attacker to take control of a PC or Mac running these apps.
Now, CS6 is the current versions of Adobe premier (and expensive) software suit, but the previous CS5 is still officially supported by the company, so it was strange that the company’s initial response to the discovery of this vulnerability was to say that users had to upgrade to CS6, which of course costs significant money. However, Adobe later that day backpedalled on this decision and will make the updates available here once they have been released. It looks like a system can be compromised by opening a malicious .tif file, at least in Photoshop CS5 and earlier. Adobe have not yet released specifics for the other apps in the suite.
In explaining its previous position earlier in the day, the Adobe spokesperson had said that since the vulnerabilities had been resolved with the new CS6 version, “no dot release was scheduled or released for Adobe Photoshop CS5. In looking at all aspects, including the vulnerabilities themselves and the threat landscape, the team did not believe the real-world risk to customers warranted an out-of-band release for the CS5 version to resolve these issues.”
The spokesperson had further said that, “we are not aware of any exploits targeting any of the issues fixed…”
Comments are closed.