Adobe reported a security advisories last week associated with their Adobe product. A total of eight vulnerabilities in Photoshop 5 and earlier, and Illustrator and Flash Professional 5.5 and earlier.
According to Adobe, the vulnerabilities could be exploited “to take control of the affected system,” for both Windows and Mac versions of the software. Furthermore, vulnerabilities in Photoshop could be exploited with malicious .tif image files, Adobe said.
Adobe previously announced the users of their old programs need to pay upgrade price in order to patch the critical issues. So rather than patch the bugs in the older programs, Adobe told users to upgrade to CS6. Adobe released CS6 last month, which addresses the vulnerabilities.
However, users got furious with the forced paid upgrade. The steep upgrade prices for the affected applications cost $199 each while an upgrade to CS6 is at $375 that includes all the other three.
I guess Adobe heard the complaints of the users and finally reversed their decision. They will now patch older software for free!
According to their blog, “We are in the process of resolving the vulnerabilities addressed in these security bulletins in Adobe Illustrator CS5.x, Adobe Photoshop CS5.x and Adobe Flash Professional CS5.x, and will update the respective security bulletins once the patches are available,” the Adobe’s product security response team wrote.
Glad to see Adobe changing their course. I hope this sends a message to other software vendors how a support should be.
For the free adobe software patch update, you may monitor Adobe’s official announcement on http://blogs.adobe.com/psirt/ on when they are going to released the patches.