Critical vulnerabilities in Adobe Photoshop Elements 8

Critical vulnerabilities exist in Adobe Photoshop Elements 8.0 and earlier versions.

These two buffer overflow vulnerabilities (CVE-2011-2443) could cause a crash and potentially allow an attacker to take control of the affected system.

An attacker would need to convince a user to open a malicious binary .grd or .abr file to successfully exploit the issue.

Adobe is not aware of any attacks exploiting these vulnerabilities against Adobe Photoshop Elements to date.

Photoshop Elements 10 and Photoshop Elements 9 are not vulnerable to this issue.

Solution

Because Photoshop Elements 8 is no longer supported, Adobe recommends users upgrade to Photoshop Elements 10. Users who cannot upgrade to Photoshop Elements 10 should not open .grd or .abr files from untrusted sources.