CVE-2021-28580 – Medium by Adobe file parsing buffer overflow vulnerability could lead to arbitrary code execution

https://notcve.org/view.php?id=CVE-2021-28580

08 Sep 2021 — Medium by Adobe version 2.4.5.331 (and earlier) is affected by a buffer overflow vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve remote code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Medium de Adobe versión 2.4.5.331 (y anteriores), está afectado por una vulnerabilidad de desbordamiento de búfer cuando se analiza un archivo diseñado. Un ata... • https://helpx.adobe.com/security/products/medium/apsb21-34.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •