CVE-2017-2972

Name of the Vulnerable Software and Affected Versions Adobe Acrobat Reader versions 15.020.20042 and earlier Adobe Acrobat Reader versions 15.006.30244 and earlier Adobe Acrobat Reader versions 11.0.18 and earlier

Description The issue is caused by a buffer overflow in the memory, allowing a remote attacker to inject arbitrary code through JPEG parsing, potentially leading to memory damage. This can result in arbitrary code execution due to a heap buffer overflow vulnerability in the image conversion module related to JPEG parsing.

Recommendations For Adobe Acrobat Reader versions 15.020.20042 and earlier, update to a version later than 15.020.20042 to resolve the issue. For Adobe Acrobat Reader versions 15.006.30244 and earlier, update to a version later than 15.006.30244 to resolve the issue. For Adobe Acrobat Reader versions 11.0.18 and earlier, update to a version later than 11.0.18 to resolve the issue. As a temporary workaround, consider disabling JPEG parsing in the affected Adobe Acrobat Reader versions until a patch is available.