Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability in the JPEG decoder routine. Successful exploitation could lead to arbitrary code execution.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/acrobat/apsb17-01.html | Patch Vendor Advisory |
http://www.securityfocus.com/bid/95690 | Third Party Advisory VDB Entry |
http://www.talosintelligence.com/reports/TALOS-2016-0259/ |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2017-01-23 23:59
Updated : 2017-01-27 18:59
NVD link : CVE-2017-2971
Mitre link : CVE-2017-2971
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
microsoft
- windows
adobe
- acrobat
- acrobat_reader_dc
- reader
- acrobat_dc
apple
- mac_os_x