CVE-2017-3019

Name of the Vulnerable Software and Affected Versions Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier Adobe Acrobat versions prior to the fixed version are affected, but the exact versions are not specified

Description The issue is related to a memory corruption vulnerability in the Product Representation Compact (PRC) format parser. This vulnerability can be exploited to achieve arbitrary code execution. The vulnerability is caused by reading data beyond the boundaries of a specified buffer, allowing a remote attacker to execute arbitrary code.

Recommendations For Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier, update to a version that contains a fix for this vulnerability. For Adobe Acrobat, update to a version that contains a fix for this vulnerability, as the exact vulnerable versions are not specified. As a temporary workaround, consider disabling the PRC format parser in Adobe Acrobat and Reader until a patch is available.