City

Marathi | Hindi

Epaper

Indian cyber agency alerts users of multiple bugs in Adobe products

By IANS | Updated: June 16, 2022 17:05 IST

New Delhi, June 16 The Indian Computer Emergency Response Team (CERT-In) on Thursday issued an advisory over multiple ...

Open in App

Indian cyber agency alerts users of multiple bugs in Adobe products

New Delhi, June 16 The Indian Computer Emergency Response Team (CERT-In) on Thursday issued an advisory over multiple vulnerabilities in Adobe products that could help hackers infiltrate into computer systems.

The bugs were reported in Adobe products like InDesign (along with earlier versions for Windows and macOS), InCopy, Illustrator, Bridge and Animate (and earlier versions for Windows and macOS).

"Multiple vulnerabilities have been reported in Adobe products which could allow an attacker to gain elevated privileges, execute arbitrary code, write arbitrary files on the file system and cause memory leak on the targeted system," said CERT-In which comes under the Ministry of Electronics and Information Technology (MeitY).

These vulnerabilities, according to the national cyber-security agency, exist in Adobe products due to "improper Input Validation, improper authorisation, heap-based buffer overflow, out-of-bounds Write, out-of-bounds read and use after free flaws".

An attacker could exploit these vulnerabilities by persuading the victim to open a specially crafted file or application, the advisory read.

Successful exploitation of these vulnerabilities could allow an attacker to gain elevated privileges, execute arbitrary code, write arbitrary files on the file system and cause memory leak on the targeted system.

CERT-In advised users to install appropriate software updates as part of the Adobe security updates.

The cyber-security agency also reported multiple vulnerabilities in Citrix Application Delivery Management (ADM) products which could allow a remote attacker to cause security bypass and denial of service conditions on the targeted systems.

"This vulnerability exists in Citrix ADM due to improper access control. A remote attacker could exploit this vulnerability by sending a specially-crafted request to corrupt the system and reset the administrator password at the next device reboot," according to CERT-In.

Successful exploitation of this vulnerability could allow a remote attacker to bypass security and cause improper access control on an affected device, the agency added.

Disclaimer: This post has been auto-published from an agency feed without any modifications to the text and has not been reviewed by an editor

Tags: Citrix SystemsMinistry Of Electronics And Information TechnologyUnion ministry of electronics and information technologyUnion electronics and information technologyElectronics departmentInformation and technology departmentUnion ministry of communicationsUnion ministry of electronicsMinistry of electronics and information and technologyMinistry of electronics & itInformation technology, electronics and communications department
Open in App

Related Stories

NationalPakistan Govt’s Official X Account Suspended in India After Pahalgam Terror Attack

NationalIT Minister Ashwini Vaishnaw Provides Major Update on Microsoft Outage: “Reason Identified, Updates Released”

NationalMeitY Issues Advisory to Large AI Companies: 'Platforms Must Seek Permission for Launching AI Models in India'

NationalGovernment directs social media platforms to comply with IT rules in deepfake crackdown

NationalWill provide free DTH, improve radio’s reach in villages along Indo-China border: Anurag Thakur

Technology Realted Stories

Technology‘WAVES 2025’ brings spotlight on India’s vibrant media and entertainment sector

TechnologyApple logs highest-ever shipment volume in India at 29 pc growth in March quarter

Technology75 pc of Indian businesses localise data as AI becomes core to strategy: Report

TechnologyPunjab starts first-of-its-kind B.Tech programme

TechnologyDynamic curriculum, continuous evolution of training modules key to stay relevant: Jitendra Singh