CVE-2016-7886

Name of the Vulnerable Software and Affected Versions Adobe InDesign versions 11.4.1 and earlier Adobe InDesign Server versions 11.0.0 and earlier

Description The issue is caused by a buffer overflow in memory, which can be exploited by a remote attacker to execute arbitrary code or cause a denial of service by exploiting a memory corruption error. The vulnerability can be triggered by a specially crafted file.

Recommendations For Adobe InDesign versions 11.4.1 and earlier, update to a version later than 11.4.1 to resolve the issue. For Adobe InDesign Server versions 11.0.0 and earlier, update to a version later than 11.0.0 to resolve the issue. As a temporary workaround, consider restricting the use of specially crafted files that could exploit the buffer overflow vulnerability until a patch is available.