Adobe has warned users of its Creative Cloud Desktop Application for Windows PCs about a bug that could let an attacker delete files from their computers.
Third-party researchers discovered that Adobe’s suite of design apps for Windows is vulnerable to a Time Of Check To Time Of Use (TOCTTOU) race condition, which impacts the safety checks a program carries out when using resources like files, memory, and processes.
If the state of a resource changes between check and use, it may allow an attacker to change it too, in this case by deleting a user’s project files on a Windows PC.