Use-After-Free Vulnerability in Adobe Reader and Acrobat
CVE-2015-3053

Currently unrated

Key Information:

Vendor: Adobe
Status: Acrobat; Mac Os X; Windows
Vendor: CVE Published:; 13 May 2015

Summary

A use-after-free vulnerability exists in Adobe Reader and Acrobat versions 10.x prior to 10.1.14 and 11.x prior to 11.0.11 on both Windows and OS X platforms. This flaw allows attackers to craft specific inputs that can lead to executing arbitrary code on the affected system. The exploit occurs through unspecified vectors, which distinguishes it from similar vulnerabilities identified under CVE-2015-3054, CVE-2015-3055, CVE-2015-3059, and CVE-2015-3075. Users of affected products are advised to apply the necessary updates to mitigate potential risks.

References

https://helpx.adobe.com/security/products/reader/apsb15-1...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1032284

vdb-entryx_refsource_SECTRACK

http://www.zerodayinitiative.com/advisories/ZDI-15-215

x_refsource_MISC

Timeline

Vulnerability published
May 13, 2015
Vulnerability Reserved
Apr 9, 2015