New Search

Remote Code Execution vulnerability in Adobe Acrobat Reader 2017.009.20058 and earlier 2017.008.30051 and earlier 2015.006.30306 and earlier and 11.0.20 and earlier - CVE-2017-11224

oval:org.cisecurity:def:3105

Adobe Acrobat Reader 2017.009.20058 and earlier 2017.008.30051 and earlier 2015.006.30306 and earlier and 11.0.20 and earlier has an exploitable use after free vulnerability in the XFA layout engine. Successful exploitation could lead to arbitrary code execution.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Vista
  • Microsoft Windows Server 2016
  • Microsoft Windows 7
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows 10
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2012
  • Microsoft Windows 8.1
Class:
vulnerability
Reference(s):
  • CVE-2017-11224
Product(s):
  • Adobe Acrobat Reader DC Classic
  • Adobe Acrobat 2017
  • Adobe Acrobat Reader DC Continuous
  • Adobe Acrobat Reader XI
  • Adobe Acrobat XI
  • Adobe Acrobat Reader 2017
  • Adobe Acrobat DC Continuous
  • Adobe Acrobat DC Classic