In trying times like these, it's reassuring to know you can still get pwned five different ways by Adobe Illustrator files

In trying times like these, it's reassuring to know you can still get pwned five different ways by Adobe Illustrator files

2020-04-30 05:12

Adobe has emitted fixes for multiple remote code execution holes in Illustrator and its Bridge code.

Those who rely on Adobe Illustrator version 24.0.2 for Windows, or earlier builds, will want to make sure they install APSB20-20, the latest round of security fixes for the drawing tool.

While the Illustrator fixes are going to be the more important of the patches, just due to the size of the user base, those running Adobe Bridge will also want to look for APSB 20-19, an update that addresses a whopping 17 CVE-listed vulnerabilities.

Adobe considers the fixes to be critical, so users and admins would be well-advised to test and install the updates as soon as possible.

Mat Powell of Trend Micro's Zero Day Initiative, got credit for discovering the lion's share of the bugs - 15 of the 17 were found and reported to Adobe by Powell.

News URL

https://go.theregister.co.uk/feed/www.theregister.co.uk/2020/04/30/adobe_illustrator_patches/

#adobe #adobeillustrator

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Adobe		164	60	1919	820	2135	4934