JavaScript API Execution Bypass in Adobe Reader and Acrobat on Windows and OS X
CVE-2015-3068

Currently unrated

Key Information:

Vendor

Adobe
Status
Acrobat
Mac Os X
Windows
Vendor
CVE Published:
13 May 2015

What is CVE-2015-3068?

The vulnerability enables attackers to circumvent intended restrictions on JavaScript API execution within Adobe Reader and Acrobat applications. This flaw affects versions of both products prior to specified updates, potentially allowing malicious actors to execute arbitrary JavaScript code in a trusted context, which could lead to further exploits.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/74604
vdb-entryx_refsource_BID
http://www.zerodayinitiative.com/advisories/ZDI-15-202
x_refsource_MISC
https://helpx.adobe.com/security/products/reader/apsb15-1...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.