Patch this flaw, unless you want random docs to wipe out your work
Adobe has issued a patch for a critical flaw that can be exploited to delete files from Windows computers running the Creative Cloud client.
Dubbed CVE-2020-3808, the vulnerability is a classic time-of-check-to-time-of-use flaw where, by exploiting a race condition, a miscreant could potentially trick the system into deleting work-in-progress files and other data-destroying shenanigans.
"Successful exploitation could lead to arbitrary File Deletion in the context of the current user," Adobe said in its bulletin today.
If there is one saving grace here, it's that Adobe told The Register a scumbag would have to convince a mark ..
Support the originator by clicking the read the rest link below.
