The host is installed with Adobe InDesign 18.x before 18.1 or 17.x before 17.4.1 and is prone to a heap based buffer overflow vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to perform arbitrary code execution.