New Search

Remote code execution vulnerability in Adobe Acrobat Reader 2017.009.20058 and earlier 2017.008.30051 and earlier 2015.006.30306 and earlier and 11.0.20 and earlier - CVE-2017-11235

oval:org.cisecurity:def:3109

Adobe Acrobat Reader 2017.009.20058 and earlier 2017.008.30051 and earlier 2015.006.30306 and earlier and 11.0.20 and earlier has an exploitable use after free vulnerability in the image conversion engine when decompressing JPEG data. Successful exploitation could lead to arbitrary code execution.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 8.1
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2016
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2012
  • Microsoft Windows Vista
  • Microsoft Windows 10
  • Microsoft Windows 7
Class:
vulnerability
Reference(s):
  • CVE-2017-11235
Product(s):
  • Adobe Acrobat 2017
  • Adobe Acrobat XI
  • Adobe Acrobat Reader 2017
  • Adobe Acrobat Reader DC Continuous
  • Adobe Acrobat DC Continuous
  • Adobe Acrobat Reader DC Classic
  • Adobe Acrobat Reader XI
  • Adobe Acrobat DC Classic