CVE-2017-2960

Name of the Vulnerable Software and Affected Versions Adobe Acrobat versions prior to 15.020.20042 Adobe Acrobat versions prior to 15.006.30244 Adobe Acrobat versions prior to 11.0.18 Adobe Reader versions prior to 15.020.20042 Adobe Reader versions prior to 15.006.30244 Adobe Reader versions prior to 11.0.18

Description The issue is caused by a memory buffer overflow in the image conversion engine when parsing EXIF metadata. This can allow a remote attacker to execute arbitrary code. The estimated number of potentially affected devices is not provided.

Recommendations For Adobe Acrobat versions prior to 15.020.20042, update to a version later than 15.020.20042 to resolve the issue. For Adobe Acrobat versions prior to 15.006.30244, update to a version later than 15.006.30244 to resolve the issue. For Adobe Acrobat versions prior to 11.0.18, update to a version later than 11.0.18 to resolve the issue. For Adobe Reader versions prior to 15.020.20042, update to a version later than 15.020.20042 to resolve the issue. For Adobe Reader versions prior to 15.006.30244, update to a version later than 15.006.30244 to resolve the issue. For Adobe Reader versions prior to 11.0.18, update to a version later than 11.0.18 to resolve the issue. As a temporary workaround, consider restricting the parsing of EXIF metadata in the image conversion engine until a patch is available.