CVE-2024-53959

Name of the Vulnerable Software and Affected Versions Adobe Framemaker versions 2020.7, 2022.5 and earlier

Description The issue is a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. To exploit this problem, user interaction is necessary, as the victim must open a malicious file. This allows an attacker to potentially execute arbitrary code in the context of the current user using a specially crafted file.

Recommendations For versions 2020.7 and earlier, update to a version later than 2022.5 to resolve the issue. For version 2022.5, consider avoiding the use of potentially malicious files until a patch is available. As a temporary workaround, consider restricting the ability to open files from untrusted sources to minimize the risk of exploitation.