Rewterz Threat Advisory – Multiple Adobe Security Vulnerabilities

Severity

High

Analysis Summary

CVE-2021-39817

Adobe Bridge could allow a remote attacker to execute arbitrary code on the system, caused by an access of memory location after end of buffer error. By persuading a victim to open a specially-crafted document, a remote attacker could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim or cause the application to crash.

CVE-2021-39816

Adobe Bridge could allow a remote attacker to execute arbitrary code on the system, caused by an access of memory location after end of buffer error. By persuading a victim to open a specially-crafted document, a remote attacker could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim or cause the application to crash.

Impact

Code Execution
Unauthorized Access

Affected Vendors

Adobe

Affected Products

Adobe Bridge 11.1

Remediation

Refer to Adobe Security Bulletin APSB21-69 for the patch, upgrade, or suggested workaround information.

https://helpx.adobe.com/security/products/bridge/apsb21-69.html

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – SmokeLoader Malware – Active IOCs

Rewterz Threat Alert – AZORult Malware – Active IOCs

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.