CVE-2016-0936

Name of the Vulnerable Software and Affected Versions Adobe Reader (affected versions not specified) Adobe Acrobat (affected versions not specified)

Description The issue is caused by a buffer overflow in Adobe Reader and Acrobat, allowing a remote attacker to execute arbitrary code or cause a denial of service (memory corruption). A memory corruption vulnerability in these products enables attackers to execute code. The vulnerability is also related to out-of-bounds indexing in the JPEG2000 component.

Recommendations For Adobe Reader, update to a version that fixes the buffer overflow issue. For Adobe Acrobat, update to a version that fixes the buffer overflow issue. As a temporary workaround, consider disabling the JPEG2000 component in Adobe Reader and Acrobat until a patch is available. Restrict access to untrusted PDF files to minimize the risk of exploitation.