Adobe InCopy 资源管理错误漏洞

Adobe InCopy is a text editing software for authoring by Adobe, Inc. Adobe InCopy suffers from a resource management error vulnerability that stems from a mix-up in the program's instructions responsible for freeing memory. An attacker could exploit this vulnerability to cause arbitrary code...

CVE-2023-22235 Adobe InCopy SVG file Use After Free Arbitrary code execution

InCopy versions 18.1 and earlier, 17.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Vulnerability fixed in Adobe InCopy

Adobe has fixed a vulnerability in InCopy. A malicious person could exploit the vulnerability to execute arbitrary code with the victim's privileges. To do so, the malicious party must trick the victim into opening a malicious file to open. Adobe has released updates to fix the vulnerability in...

CVE-2023-22235 Adobe InCopy SVG file Use After Free Arbitrary code execution

InCopy versions 18.1 and earlier, 17.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2023-22235

Adobe InCopy is affected by a Use-After-Free vulnerability (CVE-2023-22235) in versions 18.1 and earlier and 17.4 and earlier. The issue could allow arbitrary code execution in the context of the current user and requires user interaction (opening a malicious file). Affected per the CVE entry; re...

CVE-2023-22235

InCopy versions 18.1 and earlier, 17.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Adobe Releases Security Updates for Multiple Products

Adobe has released security updates to address multiple vulnerabilities in Adobe software. An attacker can exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following advisories and apply the necessary updates: Digital...

APSB23-13 : Security update available for Adobe InCopy

Adobe has released a security update for Adobe InCopy. This update addresses a critical vulnerability. Successful exploitation could lead to arbitrary code execution...

Adobe InCopy < 17.4.1 / 18.0 < 18.2.0 Arbitrary code execution (APSB23-13)

The version of Adobe InCopy installed on the remote host is prior to 17.4.1, 18.2.0. It is, therefore, affected by a vulnerability as referenced in the APSB23-13 advisory. - InCopy versions 18.1 and earlier, 17.4 and earlier are affected by a Use After Free vulnerability that could result in...

Adobe InCopy Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processin...

Adobe InCopy Font Parsing Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of...

Adobe InCopy out-of-bounds read vulnerability (CNVD-2023-05225)

Adobe InCopy is a text editing software for authoring from Adobe. Adobe InCopy has an out-of-bounds read vulnerability that can be exploited by attackers to bypass mitigations such as ASLR and cause sensitive memory leaks...

Adobe InCopy Font Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of embedd...

Adobe InCopy Font Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of...

Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of...

Adobe InCopy Buffer Overflow Vulnerability (CNVD-2023-05227)

Adobe InCopy is a text editing software for authoring from Adobe. Adobe InCopy is vulnerable to a buffer overflow vulnerability that could be exploited by attackers to execute arbitrary code in the context of the current user...

Adobe InCopy out-of-bounds write vulnerability (CNVD-2023-05226)

Adobe InCopy is a text editing software for authoring from Adobe, Inc. An out-of-bounds write vulnerability exists in Adobe InCopy, which can be exploited by attackers to execute arbitrary code in the context of the current user...

Adobe InCopy post-release use vulnerability

Adobe InCopy is a text editing software for authoring from Adobe. Adobe InCopy has a use-after-release vulnerability that can be exploited by attackers to bypass mitigations such as ASLR and cause sensitive memory leaks...

Adobe InCopy out-of-bounds write vulnerability (CNVD-2023-05230)

Adobe InCopy is a text editing software for authoring from Adobe. Adobe InCopy is vulnerable to an out-of-bounds write vulnerability, which can be exploited to execute arbitrary code in the context of the current user...