The Mudcat Café TM
Thread #144642   Message #3349871
Posted By: JohnInKansas
12-May-12 - 05:46 AM
Thread Name: Tech: Photoshop CS5 tricks
Subject: RE: Tech: Photoshop CS5 tricks
Adobe's fix for Photoshop flaw? Buy another copy

Company is not issuing free patch for customers who want to protect themselves

By Matt Liebowitz
Security News
5/11/2012

Serious security vulnerabilities have been discovered in Adobe Photoshop, as well as in its companion applications Adobe Illustrator and Adobe Flash Professional.

Adobe is not issuing a free patch to correct the flaws, however.

Instead, the company says that customers who want to protect themselves should pay for the upgrades to the next versions of the software, which were released Monday. If you don't want to pay, Adobe asks that you "exercise caution."

The vulnerabilities in Photoshop CS5.5 and earlier, Illustrator CS5.5 and earlier and Flash Professional CS5.5 and earlier leave Mac and Windows systems open to remote exploitation by an attacker using a rigged TIFF file, Adobe said in a press release.

To tackle this problem, Adobe is recommending its users upgrade to the CS6 equivalents of their affected applications. Doing so will cost $99 for Flash Professional, $199 for Photoshop and $249 for Illustrator.

...

Adobe creative software products can be purchased individually or in various "Creative Suite" bundles. The full Creative Suite, with 16 stand-alone applications, retails for $2,599.
Citing numerous complaints that have flooded social-media sites, Graham Cluley from the security firm Sophos called Adobe's choice to force customers to pay for the new software, "a PR disaster for the company."

New versions of Photoshop and other Adobe creative applications can take months for corporate customers to deploy, and home users often hang on to older versions of Adobe's expensive software for years. Such periods of prolonged vulnerability are often exploited by malware writers, most recently with the Flashback Trojan that leveraged Apple's delay in patching Macs to infect 600,000 machines.

For those users who don't have the cash to pony up for new versions of Photoshop or Illustrator, Adobe recommends that they "follow best practices and exercise caution when opening files from unknown or untrusted sources."


And another formerly respected member of the computer community continues it's plan to be "just another toy shop," having noticed that those who buy new toys just because they're new don't worry much about hurting themselves.

John