PT-2017-1176 · Adobe · Acrobat+1
Publicado
2017-01-05
·
Atualizado
2017-01-18
·
CVE-2017-2943
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Acrobat versions prior to 15.020.20042
Adobe Acrobat versions prior to 15.006.30244
Adobe Acrobat versions prior to 11.0.18
Adobe Reader versions prior to 15.020.20042
Adobe Reader versions prior to 15.006.30244
Adobe Reader versions prior to 11.0.18
Description
The issue is caused by a memory corruption vulnerability when processing tags in TIFF images, which could lead to arbitrary code execution. This vulnerability is a result of a buffer overflow in memory. Successful exploitation could allow a remote attacker to execute arbitrary code.
Recommendations
For Adobe Acrobat and Reader versions prior to 15.020.20042, update to a version later than 15.020.20042 to resolve the issue.
For Adobe Acrobat and Reader versions prior to 15.006.30244, update to a version later than 15.006.30244 to resolve the issue.
For Adobe Acrobat and Reader versions prior to 11.0.18, update to a version later than 11.0.18 to resolve the issue.
As a temporary workaround, consider avoiding the processing of TIFF images until a patch is available.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Acrobat
Reader