729 matches found
Adobe InCopy TIF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of TIF...
Adobe InCopy JPEG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of JPEG...
Adobe InCopy out-of-bounds read vulnerability
Adobe Incopy is a text editing software for authoring from Adobe U.S.A. An out-of-bounds read vulnerability exists in Adobe InCopy, which can be exploited by attackers to execute code in the context of the current user...
Adobe InCopy JPEG2000 Parsing Use-After-Free Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...
Security Updates in Multiple Products of Adobe
THREAT LEVEL: Amber. For a detailed advisory, download the pdf file here. Multiple vulnerabilities have been discovered in Adobe Products: 16 critical vulnerabilities have been fixed in Adobe Acrobat and Reader which are listed below: Code execution: CVE-2021-44701, CVE-2021-44704, CVE-2021-44705...
APSB22-04 : Security update available for Adobe InCopy
Adobe has released a security update for Adobe InCopy. This update addresses critical and important vulnerabilities. Successful exploitation could lead to arbitrary code execution and privilege escalation...
Adobe Incopy 缓冲区错误漏洞
Adobe Incopy is a text editing software for authoring from Adobe U.S.A. An out-of-bounds read vulnerability exists in Adobe InCopy, which can be exploited by attackers to execute code in the context of the current user...
Adobe Incopy 缓冲区错误漏洞
Adobe Incopy is a text editing software for authoring from Adobe U.S.A. An out-of-bounds write vulnerability exists in Adobe InCopy, which can be exploited by attackers to cause arbitrary code to be executed in the context of the current user...
Adobe Releases Security Updates for Multiple Products
Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessa...
Adobe Incopy 缓冲区错误漏洞
Adobe Incopy is a text editing software for authoring from Adobe U.S.A. An out-of-bounds write vulnerability exists in Adobe InCopy, which can be exploited by attackers to cause arbitrary code to be executed in the context of the current user...
Adobe Incopy 资源管理错误漏洞
Adobe Incopy is a text editing software for authoring from Adobe U.S. Adobe InCopy has a resource management error vulnerability that can be exploited by attackers to bypass mitigation measures and cause sensitive memory leaks...
The vulnerability in the Adobe InCopy text creation and editing software relates to the execution of operations beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.
The vulnerability of the Adobe InCopy text creation and editing software relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created file...
CVE-2021-43015
Adobe InCopy version 16.4 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious GIF file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially...
CVE-2021-43016
Adobe InCopy version 16.4 and earlier is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this...
CVE-2021-43016
Adobe InCopy version 16.4 and earlier is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this...
CVE-2021-43015
Adobe InCopy version 16.4 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious GIF file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially...
Null pointer dereference
Adobe InCopy version 16.4 and earlier is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this...
Memory corruption
Adobe InCopy version 16.4 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious GIF file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially...
CVE-2021-43016 Adobe InCopy NULL Pointer Dereference Application Denial of Service
Adobe InCopy version 16.4 and earlier is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this...
CVE-2021-43016
Adobe InCopy 16.4 and earlier is affected by CVE-2021-43016: a null pointer dereference when parsing a specially crafted file, enabling denial-of-service in the current user context after opening a malicious file. Exploitation requires user interaction (opening the file). Remediation is reference...