Intrusion Prevention

Adobe.InDesign.Hyperlink.Processing.Remote.Code.Execution

Description

This indicates an attack attempt to exploit a Remote Code Execution Vulnerability in Adobe Systems InDesign.
A remote attacker could exploit this vulnerability by enticing a user into opening an InDesign document and navigating to a maliciously crafted hyperlink. Successful exploitation could result in execution of an arbitrary program under the security context of the application.

Affected Products

Adobe Systems InDesign prior to 14.0.2

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://helpx.adobe.com/security/products/indesign/apsb19-23.html

CVE References

CVE-2019-7107