CVE-2017-3025

Name of the Vulnerable Software and Affected Versions Adobe Acrobat Reader versions 11.0.19 and earlier Adobe Acrobat Reader versions 15.006.30280 and earlier Adobe Acrobat Reader versions 15.023.20070 and earlier Adobe Acrobat versions prior to the fixed version Adobe Reader versions prior to the fixed version Adobe Acrobat Document Cloud versions prior to the fixed version Adobe Reader Document Cloud versions prior to the fixed version

Description The issue is related to internal object representation manipulation and a memory buffer overflow, which could lead to arbitrary code execution. Successful exploitation could allow a remote attacker to execute code, resulting in memory corruption.

Recommendations For Adobe Acrobat Reader versions 11.0.19 and earlier, update to a version later than 11.0.19. For Adobe Acrobat Reader versions 15.006.30280 and earlier, update to a version later than 15.006.30280. For Adobe Acrobat Reader versions 15.023.20070 and earlier, update to a version later than 15.023.20070. For Adobe Acrobat, Adobe Reader, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud, update to the fixed version to resolve the issue. As a temporary workaround, consider restricting access to memory manipulation functions until a patch is available.