JavaScript API Execution Vulnerability in Adobe Reader and Acrobat
CVE-2015-3069

Currently unrated

Key Information:

Vendor: Adobe
Status: Acrobat; Mac Os X; Windows
Vendor: CVE Published:; 13 May 2015

Summary

The vulnerability in Adobe Reader and Acrobat allows attackers to bypass restrictions intended for JavaScript API execution. This issue occurs through unspecified vectors, enabling potential exploitation and unauthorized access to features normally restricted. Users of Adobe Reader and Acrobat versions prior to 10.1.14 and 11.0.11 on Windows and OS X should ensure their installations are up-to-date to mitigate risks.

References

http://www.securityfocus.com/bid/74604

vdb-entryx_refsource_BID

http://www.zerodayinitiative.com/advisories/ZDI-15-205

x_refsource_MISC

https://helpx.adobe.com/security/products/reader/apsb15-1...

x_refsource_CONFIRM

Timeline

Vulnerability published
May 13, 2015
Vulnerability Reserved
Apr 9, 2015