Use-After-Free Vulnerability in Adobe Reader and Acrobat
CVE-2015-3055

Currently unrated

Key Information:

Vendor: Adobe
Status: Acrobat; Mac Os X; Windows
Vendor: CVE Published:; 13 May 2015

Summary

A use-after-free vulnerability present in Adobe Reader and Acrobat versions 10.x prior to 10.1.14 and 11.x before 11.0.11 allows attackers to exploit insufficient memory management. By leveraging this vulnerability through unspecified vectors, attackers can potentially execute arbitrary code. This security risk underscores the importance of maintaining up-to-date software versions to protect against unauthorized access and data breaches.

References

http://www.zerodayinitiative.com/advisories/ZDI-15-213

x_refsource_MISC

https://helpx.adobe.com/security/products/reader/apsb15-1...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1032284

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
May 13, 2015
Vulnerability Reserved
Apr 9, 2015