Adobe Patches Five Critical Illustrator CC Flaws

2020-01-14 15:42

Adobe has released patches for five critical vulnerabilities in Adobe Illustrator CC, its popular vector graphics editor tool, which if exploited could enable arbitrary code execution.

Overall Adobe patched nine vulnerabilities as part of its regularly-scheduled updates on Tuesday, including five critical ones in Adobe Illustrator CC, and four "Important" and "Moderate" flaws in Adobe Experience Manager, its platform for integrated online marketing and web analytics.

The five critical flaws open Illustrator CC up to a memory-corruption attack, which occurs when the contents of a memory location are modified due to programming errors, ultimately enabling attackers to execute arbitrary code.

Adobe also stomped out three "Important" vulnerabilities and one "Moderate" flaw in AEM. All four flaws could enable sensitive information disclosure.

This month's Adobe patches were few and far between, particularly after last month's December update, when Adobe patched 25 CVEs overall across various products, including 17 critical vulnerabilities in Acrobat Reader, Photoshop and Brackets, which could lead to arbitrary code execution if exploited.

News URL

https://threatpost.com/adobe-patches-critical-illustrator-cc-flaws/151812/

#adobe #critical

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Adobe		167	66	2130	908	2113	5217