CVE-2015-7614

Name of the Vulnerable Software and Affected Versions Adobe Acrobat versions (affected versions not specified) Adobe Acrobat Document Cloud versions (affected versions not specified) Adobe Reader versions (affected versions not specified) Adobe Reader Document Cloud versions (affected versions not specified)

Description The issue is related to insufficient access control to certain features in Adobe PDF editing and viewing software. It allows a remote attacker to bypass restrictions on JavaScript execution.

Recommendations For Adobe Acrobat, consider disabling JavaScript execution until a patch is available. For Adobe Acrobat Document Cloud, restrict access to sensitive features to minimize the risk of exploitation. For Adobe Reader, avoid using the app.launchURL command in the affected API endpoint until the issue is resolved. For Adobe Reader Document Cloud, as a temporary workaround, consider restricting the use of JavaScript APIs until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.