PT-2017-15622 · Adobe · Digital Editions

Publicado

2017-02-14

·

Atualizado

2019-10-03

·

CVE-2017-2974

CVSS v3.1

7.5

Alta

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Adobe Digital Editions versions 4.5.3 and earlier
Description The issue is related to a buffer over-read vulnerability in the PDF font parsing functionality. Successful exploitation could lead to information disclosure.
Recommendations For Adobe Digital Editions versions 4.5.3 and earlier, update to a version later than 4.5.3 to resolve the issue.

Correção

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125

Identificadores relacionados

CVE-2017-2974
ZDI-17-106

Produtos afetados

Digital Editions