CVE-2021-45055

Adobe InCopy version 16.4 and earlier is affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

CVE-2021-45053

Adobe InCopy version 16.4 and earlier is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Design/Logic Flaw

Adobe InCopy version 16.4 and earlier is affected by a use-after-free vulnerability in the processing of a JPEG2000 file that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

Cross site scripting

Adobe InCopy version 16.4 and earlier is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Design/Logic Flaw

Adobe InCopy version 16.4 and earlier is affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

Cross site scripting

Adobe InCopy version 16.4 and earlier is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2021-45055

Adobe InCopy 16.4 and earlier are affected by an out-of-bounds read when parsing crafted files, potentially allowing code execution in the user’s context. Exploitation requires user interaction (victim must open a malicious file). The issue is addressed in Adobe InCopy 16.4.1 (APSB22-04). Other s...

CVE-2021-45055 Adobe InCopy TIF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

Adobe InCopy version 16.4 and earlier is affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

CVE-2021-45056 Adobe InCopy JPEG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Adobe InCopy version 16.4 and earlier is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2021-45056

Adobe InCopy 16.4 and earlier is affected by CVE-2021-45056, a JPEG file parsing out-of-bounds write that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must open a malicious file). The issue is addressed by updating to InCo...

CVE-2021-45053 Adobe InCopy JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Adobe InCopy version 16.4 and earlier is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2021-45053 Adobe InCopy JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Adobe InCopy version 16.4 and earlier is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2021-45053

Adobe InCopy 16.4 and earlier is affected by an out-of-bounds write vulnerability in JPEG2000 parsing that could lead to arbitrary code execution in the context of the current user. Exploitation requires the victim to open a malicious file (user interaction). Remediation: update to 16.4.1 (patche...

CVE-2021-45054 Adobe InCopy JPEG2000 Parsing Use-After-Free Information Disclosure Vulnerability

Adobe InCopy version 16.4 and earlier is affected by a use-after-free vulnerability in the processing of a JPEG2000 file that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

CVE-2021-45054 Adobe InCopy JPEG2000 Parsing Use-After-Free Information Disclosure Vulnerability

Adobe InCopy version 16.4 and earlier is affected by a use-after-free vulnerability in the processing of a JPEG2000 file that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

CVE-2021-45054

Adobe InCopy 16.4 and earlier is affected by a use-after-free vulnerability in the JPEG2000 file processing that could disclose memory and bypass ASLR. Exploitation requires user interaction (victim opens a malicious file). A remediation reference in APSB22-04 notes a patch to address these issue...

Adobe InCopy out-of-bounds write vulnerability (CNVD-2022-04522)

Adobe Incopy is a text editing software for authoring from Adobe U.S.A. An out-of-bounds write vulnerability exists in Adobe InCopy, which can be exploited by attackers to cause arbitrary code to be executed in the context of the current user...

Adobe InCopy JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of JPG200...

Adobe InCopy Resource Management Error Vulnerability

Adobe Incopy is a text editing software for authoring from Adobe U.S. Adobe InCopy has a resource management error vulnerability that can be exploited by attackers to bypass mitigation measures and cause sensitive memory leaks...

Adobe InCopy out-of-bounds write vulnerability

Adobe Incopy is a text editing software for authoring from Adobe U.S.A. An out-of-bounds write vulnerability exists in Adobe InCopy, which can be exploited by attackers to cause arbitrary code to be executed in the context of the current user...