CVE-2017-2959
published 2017-01-11CVE-2017-2959: Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability in the…
high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability in the image conversion engine, related to parsing of color profile metadata. Successful exploitation could lead to arbitrary code execution.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat | <= 11.0.18 | — |
| adobe | acrobat_dc | <= 15.006.30244 | — |
| adobe | acrobat_dc | <= 15.020.20042 | — |
| adobe | acrobat_reader_dc | <= 15.006.30244 | — |
| adobe | acrobat_reader_dc | <= 15.020.20042 | — |
| adobe | reader | <= 11.0.18 | — |