Adobe After Effects versions 16.1.2 and previous versions have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe has issued unscheduled patches for two critical vulnerabilities that, if exploited, enable an attacker to execute remote code on targeted devices.
The two apps affected by the critical flaws are Adobe After Effects, a visual effects and motion graphics app used for post-production film making and video game production, and Adobe Media Encoder, an application to help with media processing requirements for audio and video.
“Both vulnerabilities can be exploited by a remote, una...