Adobe Animate CVE-2019-7960 DLL Loading Local Privilege Escalation Vulnerability

2019-11-12T00:00:00
ID SMNTC-110828
Type symantec
Reporter Symantec Security Response
Modified 2019-11-12T00:00:00

Description

Description

Adobe Animate is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. Animate 19.2.1 and prior are vulnerable.

Technologies Affected

  • Adobe Animate 14.2.0.20
  • Adobe Animate 15.0.0.173
  • Adobe Animate 15.0.1.179
  • Adobe Animate 15.1.0.210
  • Adobe Animate 15.1.1.13
  • Adobe Animate 15.2.0.66
  • Adobe Animate 15.2.1.95
  • Adobe Animate 16.0.0.112
  • Adobe Animate 19.2.1

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Ensure that only trusted users have local, interactive access to affected computers.

Updates are available. Please see the references or vendor advisory for more information.