Patch/Configuration Management, Vulnerability Management

Patch Tuesday: Adobe issues patch for Creative Cloud Desktop Application

Adobe's April Patch Tuesday offering contained a single update fixing a flaw in its Creative Cloud Desktop Application.

The issue, CVE-2016-1034 and rated as important by Adobe, has not been exploited in the wild. However, if left unpatched it could allow an unauthorized person to remotely read and write files to an unprotected system, Adobe stated. The patch fixes a problem with the JavaScript API for Creative Cloud Libraries and was discovered by Roger Chen of the University of California, Berkeley, and Lokihardt working with Trend Micro's ZDI.

The affected version is Creative Cloud 3.5.1.209 for Windows and Macintosh. Adobe recommends the patch be applied as soon as possible.

This update follows Adobe's April 8 security release that addressed multiple problems with Flash Player.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.