New Search

Remote code execution vulnerability in Adobe Acrobat Reader 2017.009.20058 and earlier 2017.008.30051 and earlier 2015.006.30306 and earlier and 11.0.20 and earlier - CVE-2017-11235

oval:org.cisecurity:def:3109

Adobe Acrobat Reader 2017.009.20058 and earlier 2017.008.30051 and earlier 2015.006.30306 and earlier and 11.0.20 and earlier has an exploitable use after free vulnerability in the image conversion engine when decompressing JPEG data. Successful exploitation could lead to arbitrary code execution.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Vista
  • Microsoft Windows 10
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows Server 2016
  • Microsoft Windows 8.1
  • Microsoft Windows 7
  • Microsoft Windows Server 2008
Class:
vulnerability
Reference(s):
  • CVE-2017-11235
Product(s):
  • Adobe Acrobat Reader DC Classic
  • Adobe Acrobat Reader XI
  • Adobe Acrobat Reader DC Continuous
  • Adobe Acrobat XI
  • Adobe Acrobat 2017
  • Adobe Acrobat DC Classic
  • Adobe Acrobat DC Continuous
  • Adobe Acrobat Reader 2017