CVE-2017-11302 Adobe InDesign Memory Corruption Vulnerability (APSB17-38)

Adobe InDesign is a desktop publishing software application.

This update addresses a critical memory corruption vulnerability due to improper handling of a malformed .inx file.

Affected Versions:
Adobe InDesign 12.1.0 and earlier versions

QID Detection Logic (Authenticated) :
This checks for vulnerable versions of InDesign.

Successful exploitation could allow an attacker to execute arbitrary code on a targeted system.

The vendor has released updates to fix the vulnerabilities. Please refer to Adobe advisory APSB17-38 for details.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

APSB17-38: Windows

APSB17-38: MAC OS X