Lucene search
Mat Powell (@mrpowell) & Joshua Smith (@kernelsmith) of Trend Micro Zero Day InitiativeZDI-21-803HistoryJul 15, 2021 - 12:00 a.m.
Adobe Illustrator PostScript File Parsing Use-After-Free Information Disclosure Vulnerability
2021-07-1500:00:00
Mat Powell (@mrpowell) & Joshua Smith (@kernelsmith) of Trend Micro Zero Day Initiative
www.zerodayinitiative.com
47
adobe illustrator
postscript
information disclosure
vulnerability
remote attackers
EPSS
0.003
Percentile
71.1%
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Illustrator. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of PostScript files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process.
Related
cnvd
cnvd
Adobe Illustrator 2021 Post-release Reuse Vulnerability
2021-07-14 00:00:00
prion
prion
Design/Logic Flaw
2021-08-20 19:15:00
cvelist
cvelist
cve
cve
CVE-2021-28593
2021-08-20 19:15:08
nvd
nvd
CVE-2021-28593
2021-08-20 19:15:08
nessus
nessus
Adobe Illustrator CC < 25.3 Multiple Vulnerabilities (APSB21-42)
2021-07-15 00:00:00
openvas
openvas
Adobe Illustrator Multiple Vulnerabilities (APSB21-42) - Windows
2021-08-12 00:00:00
adobe
adobe
APSB21-42 Security update available for Adobe Illustrator
2021-07-13 00:00:00