Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable integer overflow vulnerability in the XML Forms Architecture (XFA) engine, related to layout functionality. Successful exploitation could lead to arbitrary code execution.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/acrobat/apsb17-11.html | Vendor Advisory |
http://www.securityfocus.com/bid/97548 | Third Party Advisory VDB Entry |
http://www.zerodayinitiative.com/advisories/ZDI-17-260/ | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1038228 |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2017-04-12 07:59
Updated : 2017-07-10 18:33
NVD link : CVE-2017-3034
Mitre link : CVE-2017-3034
JSON object : View
CWE
CWE-191
Integer Underflow (Wrap or Wraparound)
Products Affected
microsoft
- windows
adobe
- acrobat
- acrobat_reader_dc
- reader
- acrobat_dc
apple
- mac_os_x