Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allow attackers to obtain sensitive information about color objects from process memory by reading a light object's RGB data, a different vulnerability than CVE-2015-6699, CVE-2015-6700, CVE-2015-6701, CVE-2015-6702, CVE-2015-6703, and CVE-2015-6704.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/acrobat/apsb15-24.html | Patch Vendor Advisory |
http://www.zerodayinitiative.com/advisories/ZDI-15-475 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1033796 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2015-10-14 16:59
Updated : 2021-09-08 10:19
NVD link : CVE-2015-6697
Mitre link : CVE-2015-6697
JSON object : View
CWE
CWE-772
Missing Release of Resource after Effective Lifetime
Products Affected
microsoft
- windows
adobe
- acrobat
- acrobat_reader_dc
- acrobat_reader
- acrobat_dc
apple
- macos