PT-2024-36017 · Undefined · Undefined

MS-ISAC CYBERSECURITY ADVISORYMS-ISAC CYBERSECURITY ADVISORY MS-ISAC ADVISORY NUMBER: 2024-134 DATES ISSUED: 12/10/2024 SUBJECT: Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution OVERVIEW: Multiple vulnerabilities have been discovered in Adobe products, the most...

Adobe InDesign Buffer Overflow Vulnerability

Adobe InDesign is a desktop publishing program from Adobe that is primarily used for typesetting and editing a variety of printed materials. A buffer overflow vulnerability exists in Adobe InDesign that stems from an out-of-bounds read issue that can be exploited by an attacker to cause a sensiti...

PT-2024-9870 · Adobe · Indesign

Name of the Vulnerable Software and Affected Versions: InDesign Desktop versions ID19.5, ID18.5.4 and earlier Description: The issue is related to an out-of-bounds read vulnerability that could lead to the disclosure of sensitive memory. This vulnerability could be exploited by an attacker to...

Adobe InDesign < 19.5.1 / 20.0.0 < 20.0.1 Memory leak (APSB24-91)

The version of Adobe InDesign installed on the remote Windows host is prior to 19.5.1, 20.0.1. It is, therefore, affected by a vulnerability as referenced in the APSB24-91 advisory. - Out-of-bounds Read CWE-125 potentially leading to Memory leak CVE-2024-49529 Note that Nessus has not tested for...

Adobe InDesign < 19.5.1 / 20.0.0 < 20.0.1 Memory leak (APSB24-91) (macOS)

The version of Adobe InDesign installed on the remote macOS host is prior to 19.5.1, 20.0.1. It is, therefore, affected by a vulnerability as referenced in the APSB24-91 advisory. - Out-of-bounds Read CWE-125 potentially leading to Memory leak CVE-2024-49529 Note that Nessus has not tested for th...

CVE-2024-49529

InDesign Desktop versions 19.0, 20.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

CVE-2024-49529

InDesign Desktop versions 19.0, 20.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

CVE-2024-49529

CVE-2024-49529 affects Adobe InDesign Desktop versions 19.0, 20.0 and earlier with an out-of-bounds read that could disclose memory and bypass ASLR. Exploitation requires user interaction (open a malicious file). Public detail from multiple sources confirms this is a memory-leak/Out-of-bounds Rea...

CVE-2024-49529 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions 19.0, 20.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

CVE-2024-49529 InDesign Desktop | Out-of-bounds Read (CWE-125)

InDesign Desktop versions 19.0, 20.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

Adobe InDesign JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe InDesign. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

Adobe InDesign 缓冲区错误漏洞

Adobe InDesign is a desktop publishing program from Adobe that is primarily used for typesetting and editing a variety of printed materials. A buffer overflow vulnerability exists in Adobe InDesign that stems from an out-of-bounds read issue that can be exploited by an attacker to cause a sensiti...

APSB24-91 : Security update available for Adobe InDesign

Adobe has released a security update for Adobe InDesign. This update addresses an important vulnerability. Successful exploitation could lead to memory leak...

Vulnerabilities fixed in Adobe InDesign

Adobe has fixed vulnerabilities in InDesign desktop applications Specifically for versions ID18.5.3, ID19.5 and earlier. The vulnerabilities are in the way the InDesign desktop applications handle specially crafted files. This can lead to a heap-based buffer overflow, which allows an attacker to...

Adobe InDesign < 18.5.4 / 19.0 < 20.0.0 Multiple Vulnerabilities (APSB24-88) (macOS)

The version of Adobe InDesign installed on the remote macOS host is prior to 18.5.4, 20.0.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB24-88 advisory. - InDesign Desktop versions ID18.5.3, ID19.5 and earlier are affected by a Heap-based Buffer Overflow...

Adobe InDesign < 18.5.4 / 19.0 < 20.0.0 Multiple Vulnerabilities (APSB24-88)

The version of Adobe InDesign installed on the remote Windows host is prior to 18.5.4, 20.0.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB24-88 advisory. - InDesign Desktop versions ID18.5.3, ID19.5 and earlier are affected by a Heap-based Buffer Overflow...

Adobe InDesign Heap Buffer Overflow Vulnerability (CNVD-2024-47506)

Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. Adobe InDesign suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code in the context of the current user...

Adobe InDesign Out-of-Bounds Read Vulnerability (CNVD-2024-47508)

Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. Adobe InDesign suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause a sensitive memory leak...

Adobe InDesign Out-of-Bounds Read Vulnerability

Adobe InDesign is a desktop publishing application from Adobe that is primarily used for typesetting and editing a variety of printed materials. Adobe InDesign is vulnerable to an out-of-bounds read vulnerability that stems from the inclusion of an out-of-bounds read vulnerability. An attacker...

Adobe InDesign Heap Buffer Overflow Vulnerability (CNVD-2024-47505)

Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. Adobe InDesign suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code in the context of the current user...