CVE-2008-1765
Public Exploits 1
ExploitDB · 1 EDB-5479 [local]
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2008-1765
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Buffer overflow in Adobe Photoshop Album Starter Edition 3.2, and possibly After Effects CS3, allows user-assisted remote attackers and physically proximate attackers to execute arbitrary code via a BMP file with an invalid image header. NOTE: the related issue in Photoshop CS3 is already covered by CVE-2007-2244.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Adobe Photoshop Album Starter Edition BMP图形头处理缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Adobe Photoshop Album Starter Edition是美国奥多比(Adobe)公司专为处理相片的用户设计的Photoshop简化版本,允许用户更容易的修改、美化照片。 Album Starter在渲染图形之前没有正确地验证BMP图形头是否有效,如果用户受骗打开了恶意的bmp图形文件的话,就可能触发缓冲区溢出,导致执行任意代码。此外,Album Starter所运行的一个服务自动查找连接到系统的设备(如相机或USB驱动),一旦找到了这类设备就会自动查找图形文件并自动导入图形,因此攻击者
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2008-1765
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2008-1765
请登录查看更多情报信息。
Vendor Advisories for CVE-2008-1765 (5)
- http://www.adobe.com/support/security/advisories/apsa08-04.htmlx_refsource_CONFIRM
Exploits & Public PoCs for CVE-2008-1765 (1)
Mailing List Discussions for CVE-2008-1765 (1)
- http://archives.neohapsis.com/archives/fulldisclosure/2008-04/0551.htmlmailing-listx_refsource_FULLDISC
Same Patch Batch · n/a · 2008-04-23 · 11 CVEs total
| CVE-2008-1928 | Imager基于图形填充堆溢出漏洞 | |
| CVE-2008-1925 | InspIRCd Prior to 1.1.18 'namesx' 'uhnames' 模块 多个拒绝服务漏洞 | |
| CVE-2008-1926 | util-linux-ng login.c 登录远程日志参数注入漏洞 | |
| CVE-2008-1927 | Perl Unicode "Q...E"正则表达式缓冲区错误漏洞 | |
| CVE-2008-1923 | asterisk 拒绝服务漏洞 | |
| CVE-2008-1924 | phpMyAdmin共享主机远程信息泄露漏洞 | |
| CVE-2007-6255 | Microsoft HeartbeatCtl ActiveX控件 Host参数 远程溢出漏洞 | |
| CVE-2008-1385 | S9Y Serendipity 跨站脚本攻击漏洞 | |
| CVE-2008-1386 | S9Y Serendipity 跨站脚本攻击漏洞 | |
| CVE-2008-1897 | Asterisk IAX2报文放大远程拒绝服务漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-9422
KLiK SocialMediaWebsite HTTP POST Request Parameter injectio - CVE-2026-9421
KLiK SocialMediaWebsite File upload.inc.php uniqid unrestric - CVE-2026-9420
KLiK SocialMediaWebsite HTTP GET Request Parameter injection - CVE-2026-9376
JPress UCenter Article Submission Endpoint doWriteSave impro - CVE-2026-9373
JeecgBoot OpenAPI Endpoint call improper authentication
V. Comments for CVE-2008-1765
No comments yet