Adobe InDesign 'INDD' File Handling Remote Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is installed with Adobe InDesign and is prone to buffer overflow vulnerability.

Impact

Successful exploitation will allow remote attackers to execute arbitrary code by tricking a user into opening a specially crafted file. Impact Level: Application.

Solution

Upgrade to Adobe InDesign CS5 or later. For updates refer to http://www.adobe.com/downloads/

Insight

The flaw exists due to improper bounds checking when parsing 'INDD' files, which leads to buffer overflow.

Affected

Adobe InDesign CS3 10.0

References

http://secunia.com/advisories/40050
http://www.vupen.com/english/advisories/2010/1347
http://xforce.iss.net/xforce/xfdb/59132

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-2321

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Alpine tmail and dmail Buffer Overflow Vulnerabilities (Win)
Adobe Photoshop Multiple Buffer Overflow Vulnerabilities
avast! 'aswRdr.sys' Buffer Overflow Vulnerability
Alleycode HTML Editor Buffer Overflow Vulnerabilities
avast! Multiple Vulnerabilities - Oct09 (Win)

Take action and discover your vulnerabilities