CVE-2017-11214

Name of the Vulnerable Software and Affected Versions Adobe Acrobat versions prior to 2017.009.20058 Adobe Acrobat versions prior to 2017.008.30051 Adobe Acrobat versions prior to 2015.006.30306 Adobe Acrobat versions prior to 11.0.20 Adobe Reader versions prior to 2017.009.20058 Adobe Reader versions prior to 2017.008.30051 Adobe Reader versions prior to 2015.006.30306 Adobe Reader versions prior to 11.0.20

Description The issue is caused by a memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to rendering a path. This vulnerability can be exploited by a remote attacker to execute arbitrary code. The vulnerability is related to an out-of-bounds read in the EMF parsing component.

Recommendations For Adobe Acrobat and Adobe Reader versions prior to 2017.009.20058, update to a version later than 2017.009.20058 to resolve the issue. For Adobe Acrobat and Adobe Reader versions prior to 2017.008.30051, update to a version later than 2017.008.30051 to resolve the issue. For Adobe Acrobat and Adobe Reader versions prior to 2015.006.30306, update to a version later than 2015.006.30306 to resolve the issue. For Adobe Acrobat and Adobe Reader versions prior to 11.0.20, update to a version later than 11.0.20 to resolve the issue. As a temporary workaround, consider disabling the EMF parsing component in Adobe Acrobat and Adobe Reader until a patch is available.