CVE-2007-2244: Buffer Overflow
First published: Wed Apr 25 2007(Updated: )
Multiple buffer overflows in Adobe Photoshop CS2 and CS3, Illustrator CS3, and GoLive 9 allow user-assisted remote attackers to execute arbitrary code via a crafted (1) BMP, (2) DIB, or (3) RLE file.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe GoLive | =9 | |
| Adobe Illustrator 2024 | =cs3 | |
| Adobe Photoshop CS5.1 | =9.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/23621
- http://secunia.com/advisories/25023
- http://www.securitytracker.com/id?1017962
- http://www.adobe.com/support/security/bulletins/apsb07-13.html
- http://www.adobe.com/support/security/bulletins/apsb07-16.html
- http://www.adobe.com/support/security/bulletins/apsb07-17.html
- http://www.osvdb.org/35370
- http://securitytracker.com/id?1018792
- http://secunia.com/advisories/26846
- http://secunia.com/advisories/26864
- http://osvdb.org/38065
- http://osvdb.org/38064
- http://osvdb.org/38066
- http://www.vupen.com/english/advisories/2007/3442
- http://www.vupen.com/english/advisories/2007/3443
- http://www.vupen.com/english/advisories/2007/1523
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33838
- https://www.exploit-db.com/exploits/3793
Frequently Asked Questions
What is the severity of CVE-2007-2244?
CVE-2007-2244 has a high severity rating due to the potential for remote code execution.
How do I fix CVE-2007-2244?
To fix CVE-2007-2244, update Adobe Photoshop CS2, Photoshop CS3, Illustrator CS3, and GoLive 9 to the latest versions available.
What types of files exploit CVE-2007-2244?
CVE-2007-2244 can be exploited by specially crafted BMP, DIB, or RLE files.
Who is affected by CVE-2007-2244?
CVE-2007-2244 affects users of Adobe Photoshop CS2 and CS3, Illustrator CS3, and GoLive 9.
Is CVE-2007-2244 a local or remote vulnerability?
CVE-2007-2244 is considered a remote vulnerability, requiring user interaction to exploit.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/adobe
- canonical/adobe golive
- version/adobe golive/9
- canonical/adobe illustrator 2024
- version/adobe illustrator 2024/cs3
- canonical/adobe photoshop cs5.1
- version/adobe photoshop cs5.1/9.0.2