Adobe InDesign 16.0.0 < 16.4.1 Multiple Vulnerabilities (APSB22-05) (macOS)

🗓️ 21 Oct 2024 00:00:00Reported by TenableType

Adobe InDesign 16.0.0 < 16.4.1 Multiple Vulnerabilities (macOS) - APSB22-05 advisor

Reporter	Title	Published	Views	Family All 38
Tenable Nessus	Adobe InDesign 16.0.0 < 16.4.1 Multiple Vulnerabilities (APSB22-05)	21 Oct 202400:00	–	nessus
BDU FSTEC	The vulnerability of Adobe InDesign’s computer layout automation tool, related to writing beyond the buffer in memory, allows a hacker to execute arbitrary code.	7 Feb 202200:00	–	bdu_fstec
BDU FSTEC	The vulnerability of Adobe InDesign’s computer layout automation tool, related to writing beyond the buffer in memory, allows a hacker to execute arbitrary code.	7 Feb 202200:00	–	bdu_fstec
BDU FSTEC	The vulnerability of Adobe InDesign’s computer layout automation tool, related to the use of memory after it is released, allows attackers to escalate their privileges.	14 Apr 202200:00	–	bdu_fstec
Circl	CVE-2021-45057	14 Jan 202200:24	–	circl
Circl	CVE-2021-45058	14 Jan 202200:18	–	circl
CNNVD	Adobe InDesign 资源管理错误漏洞	11 Jan 202200:00	–	cnnvd
CNNVD	Adobe InDesign 缓冲区错误漏洞	11 Jan 202200:00	–	cnnvd
CNNVD	Adobe InDesign 缓冲区错误漏洞	11 Jan 202200:00	–	cnnvd
CNVD	Adobe InDesign resource management error vulnerability	13 Jan 202200:00	–	cnvd

Source	Link
helpx	www.helpx.adobe.com/security/products/indesign/apsb22-05.html
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(209415);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/11/20");

  script_cve_id("CVE-2021-45057", "CVE-2021-45058", "CVE-2021-45059");

  script_name(english:"Adobe InDesign 16.0.0 < 16.4.1 Multiple Vulnerabilities (APSB22-05) (macOS)");

  script_set_attribute(attribute:"synopsis", value:
"The Adobe InDesign instance installed on the remote host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Adobe InDesign installed on the remote macOS host is prior to 16.4.1. It is, therefore, affected by
multiple vulnerabilities as referenced in the APSB22-05 advisory.

  - Adobe InDesign version 16.4 (and earlier) is affected by an out-of-bounds write vulnerability that could
    result in arbitrary code execution in the context of the current user. Exploitation of this issue requires
    user interaction in that a victim must open a malicious JPEG file. (CVE-2021-45058)

  - Adobe InDesign version 16.4 (and earlier) is affected by an out-of-bounds write vulnerability that could
    result in arbitrary code execution in the context of the current user. Exploitation of this issue requires
    user interaction in that a victim must open a malicious JPEG2000 file. (CVE-2021-45057)

  - Adobe InDesign version 16.4 (and earlier) is affected by a use-after-free vulnerability in the processing
    of a JPEG2000 file that could lead to disclosure of sensitive memory. An attacker could leverage this
    vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in
    that a victim must open a malicious file. (CVE-2021-45059)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://helpx.adobe.com/security/products/indesign/apsb22-05.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Adobe InDesign version 16.4.1 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-45058");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(416, 787);

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/01/11");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/01/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/10/21");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:indesign");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("macosx_adobe_indesign_installed.nbin");
  script_require_keys("Host/local_checks_enabled", "Host/MacOSX/Version", "installed_sw/Adobe InDesign");

  exit(0);
}

include('vcf.inc');

if (!get_kb_item('Host/local_checks_enabled'))
  audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item('Host/MacOSX/Version'))
  audit(AUDIT_OS_NOT, 'macOS');

var app_info = vcf::get_app_info(app:'Adobe InDesign');

var constraints = [
  { 'min_version' : '16.0.0', 'max_version' : '16.4.0', 'fixed_version' : '16.4.1' }
];

vcf::check_version_and_report(
    app_info:app_info,
    constraints:constraints,
    severity:SECURITY_WARNING
);

20 Nov 2024 00:00Current

7.2High risk

Vulners AI Score7.2

CVSS 26.8

CVSS 3.13.3 - 7.8

CVSS 37.8

EPSS0.01421

SSVC