Summary
This host is installed with Adobe InDesign and is prone to buffer overflow vulnerability.
Impact
Successful exploitation will allow remote attackers to execute arbitrary code by tricking a user into opening a specially crafted file.
Impact Level: Application.
Solution
Upgrade to Adobe InDesign CS5 or later.
For updates refer to http://www.adobe.com/downloads/
Insight
The flaw exists due to improper bounds checking when parsing 'INDD' files, which leads to buffer overflow.
Affected
Adobe InDesign CS3 10.0
References
Severity
Classification
-
CVE CVE-2010-2321 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Flash Professional JPG Object Processing BOF Vulnerability (Windows)
- ClamAV 'find_stream_bounds()' function Buffer Overflow Vulnerability
- Adobe Reader '/Registry' and '/Ordering' Buffer Overflow Vulnerability (Win)
- Dell Webcam 'crazytalk4.ocx' ActiveX Multiple BOF Vulnerabilities
- Buffer Overflow Vulnerability in Adobe Reader (Linux)