Security updates released for Adobe GoLive 9 and Illustrator CS3

Adobe has released updates for critical vulnerabilities found in GoLive 9 and Illustrator CS3. An attacker who successfully exploits these could take control of the affected system.

Excerpt from heise Security:

According to Adobe, opening a crafted .bmp, .dib, .png, or .rle file in Illustrator is sufficient to become infected with malicious code. In GoLive, this additionally requires the user to paste such a file into a GoLive document (an HTML file). The cause of the problem is a heap overflow when processing any of these file formats.

Additional links: