Adobe indesign Memory Corruption Vulnerability

Adobe indesign is an American Adobe company launched a set in the field of professional typography design software. A memory corruption vulnerability exists in Adobe indesign, which can be exploited by an attacker to execute arbitrary code in the context of a user running the affected application...

Adobe Patches 31 Vulnerabilities, Flash Zero-Day Under Attack

Adobe patched 31 vulnerabilities across nine different product lines Tuesday morning, including a zero-day vulnerability in Flash Player the company claims is being used in targeted attacks against Internet Explorer users on Windows. That vulnerability CVE-2016-7892 is one of 16 bugs in Flash tha...

APSB16-43 Security updates available for InDesign

Adobe has released security updates for InDesign for Windows and Macintosh. These updates resolve a critical memory corruption vulnerability...

Adobe InDesign CS4 DLL Hijacking Exploit (ibfs32.dll)

No description provided by source. / Exploit Title: Adobe InDesign CS4 DLL Hijacking Exploit ibfs32.dll Date: August 25, 2010 Author: Glafkos Charalambous glafkos@astalavistadotcom Version: CS4 v6.0 Tested on: Windows 7 x64 Ultimate Vulnerable extensions: .indl .indp .indt .inx Greetz: Astalavist...

Adobe PageMaker Detection

The remote host has Adobe PageMaker installed. Adobe PageMaker is page layout software that was discontinued and succeeded by Adobe InDesign. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid69098; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate...

Adobe InDesign Server RunScript Arbitrary Command Execution

The version of Adobe InDesign Server running on the remote host has an arbitrary command execution vulnerability. When the SOAP service is enabled, it processes requests for the RunScript method without requiring authentication. This method can be used to execute arbitrary VBScript on Windows, or...

Adobe InDesign Server SOAP Request Lack of Authentication

Access control weakness vulnerability exists in Adobe InDesign Server.The vulnerability is due to a failure to restrict access to the SOAP interface.Successful exploitation could result in execution of arbitrary script code in the context of the service...

Adobe InDesign Server SOAP interface RunScript command execution

Added: 02/04/2013 BID: 56574 OSVDB: 87548 Background Adobe InDesign is a desktop publishing application. It includes a server interface providing an API for software developers using SOAP. Problem The SOAP interface in Adobe InDesign Server allows remote, unauthenticated attackers to run arbitrar...

Adobe InDesign Server SOAP interface RunScript command execution

Added: 02/04/2013 BID: 56574 OSVDB: 87548 Background Adobe InDesign is a desktop publishing application. It includes a server interface providing an API for software developers using SOAP. Problem The SOAP interface in Adobe InDesign Server allows remote, unauthenticated attackers to run arbitrar...

Adobe InDesign Server SOAP interface RunScript command execution

Added: 02/04/2013 BID: 56574 OSVDB: 87548 Background Adobe InDesign is a desktop publishing application. It includes a server interface providing an API for software developers using SOAP. Problem The SOAP interface in Adobe InDesign Server allows remote, unauthenticated attackers to run arbitrar...

Adobe InDesign Server SOAP interface RunScript command execution

Added: 02/04/2013 BID: 56574 OSVDB: 87548 Background Adobe InDesign is a desktop publishing application. It includes a server interface providing an API for software developers using SOAP. Problem The SOAP interface in Adobe InDesign Server allows remote, unauthenticated attackers to run arbitrar...

Adobe IndesignServer 5.5 - SOAP Server Arbitrary Script Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Adobe...

Adobe IndesignServer 5.5 SOAP Server Arbitrary Script Execution

This module abuses the "RunScript" procedure provided by the SOAP interface of Adobe InDesign Server, to execute arbitrary vbscript Windows or applescript OSX. The exploit drops the payload on the server and must be removed manually. This module requires Metasploit: https://metasploit.com/downloa...

KLA10037 ACE vulnerability in Adobe InDesign

A critical vulnerability was found in Adobe InDesign and InCopy. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally and possibly remotely at a point related to an untrusted path via DLL hijacking. Original advisories Adobe...

Adobe InDesign Insecure Library Loading Vulnerability - Windows

Adobe InDesign is prone to insecure library loading vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Adobe InDesign Insecure Library Loading Vulnerability (Windows)

This host is installed with Adobe InDesign and is prone to insecure library loading vulnerability. OpenVAS Vulnerability Test $Id: gbadobeindesigninsecurelibloadvulnwin.nasl 5263 2017-02-10 13:45:51Z teissa $ Adobe InDesign Insecure Library Loading Vulnerability Windows Authors: Antu Sanadi...

CVE-2010-3153

Untrusted search path vulnerability in Adobe InDesign CS4 6.0, InDesign CS5 7.0.2 and earlier, Adobe InDesign Server CS5 7.0.2 and earlier, and Adobe InCopy CS5 7.0.2 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a...

Design/Logic Flaw

Untrusted search path vulnerability in Adobe InDesign CS4 6.0, InDesign CS5 7.0.2 and earlier, Adobe InDesign Server CS5 7.0.2 and earlier, and Adobe InCopy CS5 7.0.2 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a...

CVE-2010-3153

CVE-2010-3153 affects Adobe InDesign CS4 CS5 (Windows) and InDesign Server CS5, and InCopy CS5 up to 7.0.2. The vulnerability arises from DLL hijacking via a Trojan ibfs32.dll placed in the same folder as .indl, .indp, .indt, or .inx files, enabling untrusted search path execution. Impact is arbi...

CVE-2010-3153

Untrusted search path vulnerability in Adobe InDesign CS4 6.0, InDesign CS5 7.0.2 and earlier, Adobe InDesign Server CS5 7.0.2 and earlier, and Adobe InCopy CS5 7.0.2 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a...