CVE-2016-0943

Name of the Vulnerable Software and Affected Versions Adobe Reader versions prior to 11.0.14 Adobe Acrobat versions prior to 11.0.14 Adobe Acrobat DC Classic versions prior to 15.006.30119 Adobe Acrobat DC Continuous versions prior to 15.010.20056 Adobe Acrobat Reader DC Classic versions prior to 15.006.30119 Adobe Acrobat Reader DC Continuous versions prior to 15.010.20056

Description The issue is related to errors in managing the Global object, which can be exploited by a remote attacker to bypass JavaScript API execution restrictions. This can be achieved via unspecified vectors, allowing the attacker to execute JavaScript API calls that would otherwise be restricted.

Recommendations For Adobe Reader versions prior to 11.0.14, update to version 11.0.14 or later. For Adobe Acrobat versions prior to 11.0.14, update to version 11.0.14 or later. For Adobe Acrobat DC Classic versions prior to 15.006.30119, update to version 15.006.30119 or later. For Adobe Acrobat DC Continuous versions prior to 15.010.20056, update to version 15.010.20056 or later. For Adobe Acrobat Reader DC Classic versions prior to 15.006.30119, update to version 15.006.30119 or later. For Adobe Acrobat Reader DC Continuous versions prior to 15.010.20056, update to version 15.010.20056 or later.