2 matches found
KLA10037 ACE vulnerability in Adobe InDesign
A critical vulnerability was found in Adobe InDesign and InCopy. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally and possibly remotely at a point related to an untrusted path via DLL hijacking. Original advisories Adobe...
CVE-2010-3153
CVE-2010-3153 affects Adobe InDesign CS4 CS5 (Windows) and InDesign Server CS5, and InCopy CS5 up to 7.0.2. The vulnerability arises from DLL hijacking via a Trojan ibfs32.dll placed in the same folder as .indl, .indp, .indt, or .inx files, enabling untrusted search path execution. Impact is arbi...