virus logo Intrusion Prevention

Adobe.InDesign.Server.SOAP.Arbitrary.Script.Execution

description-logoDescription

This indicates an attack attempt against a remote Script Execution vulnerability in Adobe Indesign Server.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application when parsing HTTP requests. A remote attacker may be able to exploit this to execute arbitrary script code within the context of the application via a crafted HTTP request.

affected-products-logoAffected Products

Adobe InDesign CS6 8.x
Adobe InDesign Server CS5 7.x

Impact logoImpact

System Compromise: Remote attackers can execute arbitrary script code on vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-11-22 15.729 Name:Adobe.
Indesign.
Server.
SOAP.
Arbitrary.
Script.
Execution:Adobe.
InDesign.
Server.
SOAP.
Arbitrary.
Script.
Execution
ID 34101
Created Dec 31, 2012
Updated Jul 07, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows, MacOS
Affected App Adobe