Security researchers have found a “highly critical” flaw in the portable-network graphics plug-in for the latest version of Adobe Systems’ Photoshop Creative Suite, as well as for other versions of the software that run on Windows.

The portable-network graphics, or PNG, plug-in vulnerabilities were discovered in Adobe Photoshop Creative Suite 3 (CS3), Photoshop CS2, and Adobe Photoshop Elements (Editor) version 5.0 for Windows, according to a report released Monday by Secunia, which cited a researcher named “Marsu” with the discovery. Marsu tested a public exploit against versions of the software running Windows XP SP2.

continued @