PT-2015-2364 · Adobe · Acrobat+3

Jaanus

Published

2015-10-13

Updated

2021-09-08

CVE-2015-6696

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Adobe Reader and Acrobat versions 10.x through 10.1.15 Adobe Reader and Acrobat versions 11.x through 11.0.12 Acrobat and Acrobat Reader DC Classic versions prior to 2015.006.30094 Acrobat and Acrobat Reader DC Continuous versions prior to 2015.009.20069

Description The issue is caused by a heap-based buffer overflow in the dynamic memory, allowing attackers to execute arbitrary code via unspecified vectors. This can be exploited by a remote attacker to execute code.

Recommendations For Adobe Reader and Acrobat versions 10.x, update to version 10.1.16 or later. For Adobe Reader and Acrobat versions 11.x, update to version 11.0.13 or later. For Acrobat and Acrobat Reader DC Classic, update to version 2015.006.30094 or later. For Acrobat and Acrobat Reader DC Continuous, update to version 2015.009.20069 or later.

Fix

Buffer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-787

Related Identifiers

BDU:2015-11729

CVE-2015-6696

ZDI-15-569

Affected Products

Acrobat

Acrobat Reader Dc Classic

Acrobat Reader Dc Continuous

Reader

PT-2015-2364 · Adobe · Acrobat+3

CVE-2015-6696

Weakness Enumeration

Related Identifiers

Affected Products

References · 8