This host is installed with Adobe Photoshop Camera Raw Plug-in and is prone to code execution vulnerabilities.

Successful exploitation will allow attackers to execute arbitrary code. Impact Level: System/Application

Upgrade to Adobe Photoshop Camera Raw Plug-in version 7.3 or later, For updates refer to http://www.adobe.com/downloads/

Errors exists within the 'Camera Raw.8bi' plug-in when - Parsing a LZW compressed TIFF images can be exploited to cause a buffer underflow via a specially crafted LZW code within an image row strip. - Allocating memory during TIFF image processing can be exploited to cause buffer overflow via a specially crafted image dimensions.

Adobe Photoshop Camera Raw Plug-in version before 7.3 on Windows

• http://osvdb.org/88389
• http://osvdb.org/88390
• http://secunia.com/advisories/49929
• http://securitytracker.com/id?1027872
• http://www.adobe.com/support/security/bulletins/apsb12-28.html

---

Updated on 2015-03-25