Security News > 2020 > April > In trying times like these, it's reassuring to know you can still get pwned five different ways by Adobe Illustrator files

In trying times like these, it's reassuring to know you can still get pwned five different ways by Adobe Illustrator files
2020-04-30 05:12

Adobe has emitted fixes for multiple remote code execution holes in Illustrator and its Bridge code.

Those who rely on Adobe Illustrator version 24.0.2 for Windows, or earlier builds, will want to make sure they install APSB20-20, the latest round of security fixes for the drawing tool.

While the Illustrator fixes are going to be the more important of the patches, just due to the size of the user base, those running Adobe Bridge will also want to look for APSB 20-19, an update that addresses a whopping 17 CVE-listed vulnerabilities.

Adobe considers the fixes to be critical, so users and admins would be well-advised to test and install the updates as soon as possible.

Mat Powell of Trend Micro's Zero Day Initiative, got credit for discovering the lion's share of the bugs - 15 of the 17 were found and reported to Adobe by Powell.


News URL

https://go.theregister.co.uk/feed/www.theregister.co.uk/2020/04/30/adobe_illustrator_patches/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Adobe 105 47 824 1650 622 3143