Security hole in Adobe Illustrator CS5

Adobe has shipped a patch for a potentially dangerous security hole in its Adobe Illustrator CS5 software product.

Adobe has shipped a patch for a potentially dangerous security hole in its Adobe Illustrator CS5 software product.

The vulnerability, which carries a severity rating of "important," affects Adobe Illustrator CS5 15.0.1 and earlier for Windows.

Here's the gist of the problem:

An important library-loading vulnerability has been identified in Adobe Illustrator CS5 15.0.1 and earlier on the Windows platform. Exploitation of this vulnerability (CVE-2010-3152) could allow an attacker to load arbitrary libraries by tricking a user into opening a file located on a remote WebDAV or SMB share.

Adobe recommends Illustrator CS5 users update their product installations immediately.  Instructions on applying the patch are available via this link.