Lucene search
Mat Powell of Trend Micro Zero Day InitiativeZDI-21-996HistoryAug 18, 2021 - 12:00 a.m.
Adobe Bridge SGI File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
2021-08-1800:00:00
Mat Powell of Trend Micro Zero Day Initiative
www.zerodayinitiative.com
6
0.003 Low
EPSS
Percentile
65.7%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Bridge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SGI files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to execute code in the context of the current process.
Related
prion
prion
Design/Logic Flaw
2021-09-01 15:15:00
cve
cve
CVE-2021-36079
2021-09-01 15:15:12
cvelist
cvelist
nvd
nvd
CVE-2021-36079
2021-09-01 15:15:12
cnvd
cnvd
Adobe Bridge out-of-bounds read vulnerability (CNVD-2021-63274)
2021-08-18 00:00:00
openvas
openvas
Adobe Bridge Multiple Vulnerabilities (APSB21-69) - Windows
2022-09-15 00:00:00
nessus
nessus
Adobe Bridge 11.x < 11.1.1 Multiple Vulnerabilities (APSB21-69)
2021-08-17 00:00:00
Adobe Bridge 11.x < 11.1.1 Multiple Vulnerabilities (APSB21-69)
2021-08-17 00:00:00
adobe
adobe
APSB21-69 Security update available for Adobe Bridge
2021-08-17 00:00:00