First published: Wed May 09 2012(Updated: )
Adobe Illustrator before CS6 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-0780, CVE-2012-2024, CVE-2012-2025, and CVE-2012-2026.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Adobe Illustrator 2024 | =7.0 | |
Adobe Illustrator 2024 | =8.0 | |
Adobe Illustrator 2024 | =9.0 | |
Adobe Illustrator 2024 | =10.0 | |
Adobe Illustrator 2024 | =11.0 | |
Adobe Illustrator 2024 | =11.0.1 | |
Adobe Illustrator 2024 | =12.0.0 | |
Adobe Illustrator 2024 | =13.0 | |
Adobe Illustrator 2024 | =13.0.1 | |
Adobe Illustrator 2024 | =13.0.2 | |
Adobe Illustrator 2024 | =13.0.3 | |
Adobe Illustrator 2024 | =14.0 | |
Adobe Illustrator 2024 | =15.0 | |
Adobe Illustrator | <=15 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2012-2023 is rated with a high severity due to the potential for arbitrary code execution and denial of service.
To mitigate CVE-2012-2023, users should upgrade Adobe Illustrator to the latest version that addresses this vulnerability.
CVE-2012-2023 affects Adobe Illustrator versions 7.0 through 15.0, including various specific updates.
Yes, CVE-2012-2023 can potentially lead to data loss through memory corruption and execution of arbitrary code.
While the best course of action is to update Adobe Illustrator, temporarily limiting its use can reduce exposure to CVE-2012-2023.