PT-2015-2614 · Adobe · Reader+1

Kdot

Published

2015-10-13

Updated

2021-09-08

CVE-2015-7650

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Adobe Acrobat versions prior to the fixed version Adobe Reader versions prior to the fixed version

Description The issue is caused by a buffer overflow in Adobe Reader and Acrobat, allowing a remote attacker to execute arbitrary code or cause a denial of service using a specially crafted CMAP table in a PDF document. A memory corruption vulnerability in Adobe Acrobat and Reader enables attackers to execute code.

Recommendations For Adobe Acrobat, update to a version that includes the fix for this issue. For Adobe Reader, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting the use of PDF documents with specially crafted CMAP tables until a patch is available.

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2015-11979

CVE-2015-7650

ZDI-15-534

Affected Products

Acrobat

Reader

PT-2015-2614 · Adobe · Reader+1

CVE-2015-7650

Weakness Enumeration

Related Identifiers

Affected Products

References · 6