PT-2016-1954 · Adobe · Acrobat+3
Publicado
2016-05-05
·
Atualizado
2016-12-02
·
CVE-2016-4092
CVSS v2.0
10
Crítica
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Reader versions prior to 11.0.16
Acrobat and Acrobat Reader DC Classic versions prior to 15.006.30172
Acrobat and Acrobat Reader DC Continuous versions prior to 15.016.20039
Description
The issue is caused by a heap-based buffer overflow in Adobe Reader and Acrobat, allowing attackers to execute arbitrary code via unspecified vectors. This can be exploited by a remote attacker to execute code. The estimated number of potentially affected devices worldwide is not specified.
Recommendations
For Adobe Reader versions prior to 11.0.16, update to version 11.0.16 or later.
For Acrobat and Acrobat Reader DC Classic versions prior to 15.006.30172, update to version 15.006.30172 or later.
For Acrobat and Acrobat Reader DC Continuous versions prior to 15.016.20039, update to version 15.016.20039 or later.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Acrobat
Acrobat Reader Dc Classic
Acrobat Reader Dc Continuous
Reader