CVE-2017-16383

Name of the Vulnerable Software and Affected Versions Adobe Acrobat versions prior to 2017.012.20098 Adobe Acrobat versions prior to 2017.011.30066 Adobe Acrobat versions prior to 2015.006.30355 Adobe Acrobat versions prior to 11.0.22

Description The issue is related to a heap overflow vulnerability when processing a JPEG file embedded within an XPS document. This allows attackers to execute code remotely. The vulnerability is triggered by parsing a specifically crafted JPEG file, which leads to a heap-based buffer overflow.

Recommendations For versions prior to 2017.012.20098, update to a version later than 2017.012.20098 to resolve the issue. For versions prior to 2017.011.30066, update to a version later than 2017.011.30066 to resolve the issue. For versions prior to 2015.006.30355, update to a version later than 2015.006.30355 to resolve the issue. For versions prior to 11.0.22, update to a version later than 11.0.22 to resolve the issue. As a temporary workaround, consider disabling the processing of JPEG files embedded within XPS documents until a patch is available.