CVE-2016-4091

Name of the Vulnerable Software and Affected Versions Adobe Reader versions prior to 11.0.16 Adobe Reader Document Cloud versions prior to 15.006.30172 Adobe Acrobat Document Cloud versions prior to 15.006.30172 Adobe Acrobat versions prior to 11.0.16 Adobe Acrobat DC Classic versions prior to 15.006.30172 Adobe Acrobat DC Continuous versions prior to 15.016.20039

Description The issue is caused by a heap-based buffer overflow in the dynamic memory of Adobe Reader and Acrobat. This allows a remote attacker to execute arbitrary code via unspecified vectors. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited.

Recommendations For Adobe Reader versions prior to 11.0.16, update to version 11.0.16 or later. For Adobe Reader Document Cloud versions prior to 15.006.30172, update to version 15.006.30172 or later. For Adobe Acrobat Document Cloud versions prior to 15.006.30172, update to version 15.006.30172 or later. For Adobe Acrobat versions prior to 11.0.16, update to version 11.0.16 or later. For Adobe Acrobat DC Classic versions prior to 15.006.30172, update to version 15.006.30172 or later. For Adobe Acrobat DC Continuous versions prior to 15.016.20039, update to version 15.016.20039 or later.