KLA10037ACE vulnerability in Adobe InDesign

2010-10-18T00:00:00
ID KLA10037
Type kaspersky
Reporter Kaspersky Lab
Modified 2018-07-05T00:00:00

Description

CVSS:

9.3

Detect date:

10/18/2010

Severity:

Critical

Description:

A critical vulnerability was found in Adobe InDesign and InCopy. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally and possibly remotely at a point related to an untrusted path via DLL hijacking.

Affected products:

Adobe InDesign versions CS5 7.0.2 and earlier for Windows
Adobe InDesign Server versions CS5 7.0.2 and earlier for Windows
Adobe InCopy versions CS5 7.0.2 and earlier for Windows

Solution:

Update to latest version

Original advisories:

Adobe bulletin

Impacts:

ACE

Related products:

Adobe InDesign CS5

CVE-IDS:

CVE-2010-3153