Adobe Reader and Acrobat JavaScript API Execution Bypass Vulnerability
CVE-2015-3071

Currently unrated

Key Information:

Vendor

Adobe
Status
Acrobat Reader
Mac Os X
Windows
Vendor
CVE Published:
13 May 2015

What is CVE-2015-3071?

This vulnerability in Adobe Reader and Acrobat allows attackers to bypass restrictions meant to control JavaScript API execution. The flaw exists in versions before 10.1.14 for Adobe Reader 10.x and 11.0.11 for Adobe Reader 11.x on both Windows and OS X platforms. Attackers may exploit this flaw through unspecified vectors, potentially leading to unauthorized actions within the applications.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/74604
vdb-entryx_refsource_BID
https://helpx.adobe.com/security/products/reader/apsb15-1...
x_refsource_CONFIRM
http://www.zerodayinitiative.com/advisories/ZDI-15-195
x_refsource_MISC

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.