The host is installed with Adobe InDesign 13.0 or earlier and is prone to an untrusted search path vulnerability. A flaw is present in the application, which fails to handle the specially crafted .inx file. Successful exploitation allows local users, and possibly remote attackers to cause privilege escalation.