Adobe Patch Tuesday updates for March 2019 address critical flaws in Photoshop CC and Digital Editions products.
The updates address a heap overflow issue affecting the Digital Editions ebook reader software, the bug could be exploited by attackers to execute arbitrary code in the context of the current user (CVE-2019-7095).
“Adobe has released a security update for Adobe Digital Editions. This update resolves a critical vulnerability. Successful exploitation could lead to Arbitrary Code Execution in the context of the current user.” reads the security advisory.
The flaw was reported by a security researcher who uses the online with the moniker
Adobe Patch Tuesday updates for March 2019 address another heap overflow vulnerability in Photoshop CC for Windows and
“Adobe has released updates for Photoshop CC for Windows and
Both vulnerabilities have been rated as critical, but received a priority rating of “3” because they are unlikely to be exploited in attacks.
The good news for Adobe users is that there is no evidence that the flaws have been exploited in attacks in the wild.
Yesterday security researchers at Swascan revealed they have found several flaws in an Adobe sandbox service hosted at adobesandbox.com.
“Swascan Team, during the security analysis for a media company in Europe, found 5 vulnerabilities related to the Web Servers at adobesandbox.com which handles through multiple and different hosts the Adobe Sandbox Service.” reads the security advisory published by Swascan.
One of the flaws has been classified as “high,” two as “medium” and two as having “low” severity. The exploitation of the flaws could “easily impact the Integrity, Availability
The experts did not publicly share details of the flaws, Adobe confirmed the
Adobe Reader sandbox.