CVE-2017-3009

7.5HIGH

Key Information:

Vendor: Adobe
Status: Adobe Acrobat Reader 15.020.20042 And Earlier, 15.006.30244 And Earlier, 11.0.18 And Earlier.
Vendor: CVE Published:; 31 March 2017

Summary

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable buffer overflow vulnerability in the JPEG2000 parser. Successful exploitation could lead to information disclosure.

Affected Version(s)

Adobe Acrobat Reader 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier. Adobe Acrobat Reader 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier.

References

http://www.securityfocus.com/bid/97302

vdb-entryx_refsource_BID

https://helpx.adobe.com/security/products/acrobat/apsb17-...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 31, 2017
Vulnerability Reserved
Dec 2, 2016