Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Photoshop CS3 End of life

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Adobe Systems
And, this specific program:
Adobe Photoshop CS3 10.x

This thread has been marked as resolved.
J-R Photoshop CS3 End of life
Member 16th Oct, 2010 07:00
Ranking: 1
Posts: 3
User Since: 28th Apr, 2009
System Score: N/A
Location: N/A
Secunia reports Photoshop CS3 as end-of-life and recommends an upgrade. On my wifes computer ( XP ) it was reported as insecure.

Any particular issues regarding Photoshop CS3 I have to be aware of? I am not going to upgrade unless it has some really insecure components.

Post "RE: Photoshop CS3 End of life" has been selected as an answer.
Maurice Joyce RE: Photoshop CS3 End of life
Handling Contributor 16th Oct, 2010 08:24
Score: 11743
Posts: 9,000
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Here is the Secunia advisory on the product.

http://secunia.com/advisories/product/14040/

U will note it has a highly critical vulnerability outstanding hence the PSI warning.

If it really is End of Life Adobe will not fix that vulnerability as they will have withdrawn all support.

Like all End of Life products there are 3 basic choices.

1. Upgrade to the latest version.
2. Uninstall the programme.
3. Continue to use it knowing there is an element of risk - in this instance (if I have found the correct programme ) that risk is very high.

Hope this helps.

--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 11 for Windows 7 SP1
16GB RAM
Was this reply relevant?
+1
-0
ddmarshall RE: Photoshop CS3 End of life
Dedicated Contributor 16th Oct, 2010 13:24
Score: 1209
Posts: 961
User Since: 8th Nov 2008
System Score: 98%
Location: UK
You could also consider using the Microsoft Extended Migitigation Experience Toolkit to prevent exploitation of the vulnerability.

Links to information about this tool and the download can found here:
http://blogs.technet.com/b/srd/archive/2010/09/02/...

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+1
-0
highstream RE: Photoshop CS3 End of life
Member 16th Oct, 2010 21:29
Score: 6
Posts: 29
User Since: 19th Dec 2007
System Score: N/A
Location: N/A
Thanks for those links. EMET will help not only with this but also with Office 2000, which I keep around for occasional need.

Secunia's vulnerability warning page for CS3 Photoshop actually doesn't tell the user much of anything specific, it's just scare. One has to do a search. There is only one recent warning (post 2007). It's for CS Photoshop's TIFF processing and was posted in May. Which raises a question, how come it's just showing up in the list now?
Was this reply relevant?
+0
-0
JoanneC RE: Photoshop CS3 End of life
Member 19th Oct, 2010 08:45
Score: 0
Posts: 1
User Since: 19th Oct 2010
System Score: N/A
Location: US
The only vulnerability I'm seeing is also the TIFF issue. It appears that if I don't open a TIFF sent to me by someone, I should be OK. But the Vulnerability Report says there are 3 advisories & 4 vulnerabilities. Where & what are they?
Was this reply relevant?
+0
-0
Anthony Wells RE: Photoshop CS3 End of life
Expert Contributor 19th Oct, 2010 17:34
Score: 2445
Posts: 3,332
User Since: 19th Dec 2007
System Score: N/A
Location: N/A

Hello @JoanneC ,

Here is the full list ; the one you know about is the only one not patched :-

http://secunia.com/advisories/product/14040/?task=...

Hope that clears any confusion .

Anthony

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0
J-R RE: Photoshop CS3 End of life
Member 21st Oct, 2010 10:38
Score: 1
Posts: 3
User Since: 28th Apr 2009
System Score: N/A
Location: N/A
Thank you for all the replies and the links. It was helpful.
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability