Download
| Alert*
oval:org.secpod.oval:def:10022
The host is missing an important security update according to APSB10-24. The update is required to fix untrusted search path vulnerability. A flaw is present in the application, which fails to handle the DLL hijacking attacks via a Trojan horse ibfs32.dll. Successful exploitation allows local users, ... oval:org.secpod.oval:def:10023 The host is installed with Adobe InDesign CS4 before 6.0.6, InDesign CS5 before 7.0.3 and is prone to untrusted search path vulnerability. A flaw is present in the application, which fails to handle the DLL hijacking attacks via a Trojan horse ibfs32.dll. Successful exploitation allows local users, ... oval:org.secpod.oval:def:48096 The host is installed with Adobe InDesign 13.0 or earlier and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle the specially crafted .inx file. Successful exploitation allows local users, and possibly remote attackers to execute remote code. oval:org.secpod.oval:def:48094 The host is installed with Adobe InDesign 12.1.0 or earlier and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted data. Successful exploitation allows local users, and possibly remote attackers to execute arbitrary code. oval:org.secpod.oval:def:48095 The host is installed with Adobe InDesign 13.0 or earlier and is prone to an untrusted search path vulnerability. A flaw is present in the application, which fails to handle the specially crafted .inx file. Successful exploitation allows local users, and possibly remote attackers to cause privilege ... oval:org.secpod.oval:def:48092 The host is installed with Adobe InDesign before 11.4.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted data. Successful exploitation allows local users, and possibly remote attackers to execute arbitrary code. oval:org.secpod.oval:def:13 Adobe InDesign is installed (32-bit) oval:org.secpod.oval:def:80121 The host is missing a critical security update according to Adobe advisory, APSB22-23. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fail to handle unspecified vectors. Successful exploitation allows an attacker to cause arbitrary code execut ... oval:org.secpod.oval:def:80124 The host is installed with Adobe InDesign before 16.4.2 or 17.x before 17.2 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to cause arbitrary code execution. oval:org.secpod.oval:def:80122 The host is installed with Adobe InDesign before 16.4.2 or 17.x before 17.2 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to cause arbitrary code execution. oval:org.secpod.oval:def:80123 The host is installed with Adobe InDesign before 16.4.2 or 17.x before 17.2 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to cause arbitrary code execution. oval:org.secpod.oval:def:95982 The host is installed with Adobe InDesign 19.x before 19.1, or 17.x through 17.4.2 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to cause memory leak. oval:org.secpod.oval:def:95981 The host is missing an important security update according to Adobe advisory, APSB23-70. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fail to handle unspecified vectors. Successful exploitation allows an attacker to cause application denial- ... oval:org.secpod.oval:def:95983 The host is installed with Adobe InDesign 19.x before 19.1, or 17.x through 17.4.2 and is prone to a NULL pointer dereference vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to cause application denial-of-servic ... |