PT-2015-1504 · Adobe · Reader+2
Nicolas Joly
·
Publicado
2015-07-14
·
Atualizado
2021-09-08
·
CVE-2015-5110
CVSS v2.0
10
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Acrobat versions 10.x through 10.1.14
Adobe Acrobat versions 11.x through 11.0.11
Acrobat and Acrobat Reader DC Classic versions prior to 2015.006.30060
Acrobat and Acrobat Reader DC Continuous versions prior to 2015.008.20082
Adobe Reader versions 10.x through 10.1.14
Adobe Reader versions 11.x through 11.0.11
Adobe Reader DC versions prior to 2015.006.30060
Description
The issue is caused by a stack-based buffer overflow in the dynamic memory, allowing a remote attacker to execute arbitrary code. This can be achieved via unspecified vectors. The vulnerability affects various versions of Adobe Acrobat and Reader, enabling attackers to execute code remotely.
Recommendations
For Adobe Acrobat versions 10.x through 10.1.14, update to version 10.1.15 or later.
For Adobe Acrobat versions 11.x through 11.0.11, update to version 11.0.12 or later.
For Acrobat and Acrobat Reader DC Classic versions prior to 2015.006.30060, update to version 2015.006.30060 or later.
For Acrobat and Acrobat Reader DC Continuous versions prior to 2015.008.20082, update to version 2015.008.20082 or later.
For Adobe Reader versions 10.x through 10.1.14, update to version 10.1.15 or later.
For Adobe Reader versions 11.x through 11.0.11, update to version 11.0.12 or later.
For Adobe Reader DC versions prior to 2015.006.30060, update to version 2015.006.30060 or later.
Correção
Buffer Overflow
Memory Corruption
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Acrobat Reader
Acrobat
Reader