Fortinet Discovers Adobe InDesign CC DLL Preloading Vulnerability
Fortinet's FortiGuard Labs has discovered a DLL Preloading vulnerability in Adobe InDesign CC.
Adobe InDesign CC is a desktop publishing software produced by Adobe Systems. It can be used to create works such as posters, flyers, brochures, magazines, newspapers, presentations, books and e-books. InDesign CC can also publish content suitable for tablet devices in conjunction with Adobe Digital Publishing Suite. Graphic designers and production artists are the principal users, creating and laying out periodical publications, posters, and print media. It also supports export to EPUB and SWF formats to create e-books and digital publications, including digital magazines, and content suitable for consumption on tablet computers. In addition, InDesign CC supports XML, style sheets, and other coding markup, making it suitable for exporting tagged text content for use in other digital and online formats.
Adobe InDesign CC for Windows is susceptible to a DLL Preloading vulnerability. The issue occurs when the application looks to load a DLL for execution and an attacker provides a malicious DLL to use instead. The application generally follows a specific search path to locate the DLL. The vulnerability can be exploited by a simple file write (or potentially an over-write) which results in a foreign DLL running under the context of the application.
Users should apply the solution provided by Adobe Systems.
Fortinet reported the vulnerability to Adobe Systems on June 15, 2017.
Adobe Systems confirmed the vulnerability on March 20, 2018.
Adobe Systems patched the vulnerability on April 10, 2018.
This vulnerability was discovered by Kushal Arvind Shah of Fortinet's FortiGuard Labs.