CVE-2016-4270

Name of the Vulnerable Software and Affected Versions Adobe Reader versions (affected versions not specified) Adobe Acrobat versions (affected versions not specified)

Description The issue is caused by a buffer overflow in Adobe Reader and Adobe Acrobat, allowing a remote attacker to execute arbitrary code or cause a denial of service (memory corruption) through unknown vectors. It is related to a memory corruption vulnerability that enables attackers to execute code. Additionally, there is an out-of-bounds read information disclosure vulnerability in Adobe Reader DC related to font stream parsing.

Recommendations For Adobe Reader, update to a version that includes a fix for the buffer overflow issue. For Adobe Acrobat, apply a patch that addresses the memory corruption vulnerability. As a temporary workaround, consider restricting the use of font stream parsing in Adobe Reader DC to minimize the risk of exploitation.