Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable use after free vulnerability in the JavaScript engine, related to manipulation of the navigation pane. Successful exploitation could lead to arbitrary code execution.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/acrobat/apsb17-01.html | Patch Vendor Advisory |
http://www.securityfocus.com/bid/95343 | |
http://www.securitytracker.com/id/1037574 |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2017-01-10 20:59
Updated : 2017-01-17 18:59
NVD link : CVE-2017-2956
Mitre link : CVE-2017-2956
JSON object : View
CWE
CWE-416
Use After Free
Products Affected
microsoft
- windows
adobe
- acrobat
- acrobat_reader_dc
- reader
- acrobat_dc
apple
- mac_os_x