CVE-2017-11274

Name of the Vulnerable Software and Affected Versions Adobe Digital Editions versions 4.5.4 and earlier

Description The issue is related to a use after free vulnerability in the program, which could allow a remote attacker to execute arbitrary code. This is due to an exploitable use after free vulnerability, specifically in the ePub font parsing.

Recommendations For Adobe Digital Editions versions 4.5.4 and earlier, update to a version later than 4.5.4 to resolve the issue. As a temporary workaround, consider restricting access to the ePub font parsing functionality until a patch is available.