CVE-2016-0931

Name of the Vulnerable Software and Affected Versions Adobe Reader versions (affected versions not specified) Adobe Acrobat versions (affected versions not specified)

Description The issue is caused by a buffer overflow and a use-after-free vulnerability in Adobe Reader and Acrobat, allowing a remote attacker to execute arbitrary code or cause a denial of service (memory corruption) by using a specially crafted FileAttachment note.

Recommendations For Adobe Reader, update to a version that contains a fix for this issue. For Adobe Acrobat, update to a version that contains a fix for this issue. As a temporary workaround, consider restricting the use of the FileAttachment feature in Adobe Reader and Acrobat until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.