Security News > 2020 > March > Adobe debuts disk-cleaning tool cleverly disguised as an arbitrary file deletion bug in Creative Cloud on Windows

Adobe debuts disk-cleaning tool cleverly disguised as an arbitrary file deletion bug in Creative Cloud on Windows
2020-03-24 19:25

Adobe has issued a patch for a critical flaw that can be exploited to delete files from Windows computers running the Creative Cloud client.

"Successful exploitation could lead to arbitrary File Deletion in the context of the current user," Adobe said in its bulletin today.

The fact Adobe is releasing this now, rather than on a Patch Tuesday, suggests the Silicon Valley biz gets the potential ramifications.

Users and admins should update Creative Cloud for Windows to version 5.1 or later to make sure their machines are guarded from the flaw.

The attack, which has not yet been patched, relies on a font-parsing bug to gain malicious code execution.


News URL

https://go.theregister.co.uk/feed/www.theregister.co.uk/2020/03/24/adobe_cc_deletion_bug/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Adobe 112 77 1333 1988 640 4038