Memory Corruption Vulnerability in Adobe Acrobat Reader
CVE-2017-3010

9.8CRITICAL

Key Information:

Vendor: Adobe
Status: Adobe Acrobat Reader 15.020.20042 And Earlier, 15.006.30244 And Earlier, 11.0.18 And Earlier.
Vendor: CVE Published:; 31 March 2017

What is CVE-2017-3010?

A notable vulnerability exists within the rendering engine of Adobe Acrobat Reader, affecting multiple versions. This memory corruption flaw allows attackers to exploit the software, potentially leading to the execution of arbitrary code if successfully executed. Users are strongly advised to update their software to mitigate any risks associated with this vulnerability.

Affected Version(s)

Adobe Acrobat Reader 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier. Adobe Acrobat Reader 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier.

References

http://www.securityfocus.com/bid/97306

vdb-entryx_refsource_BID

https://helpx.adobe.com/security/products/acrobat/apsb17-...

x_refsource_CONFIRM

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 31, 2017
Vulnerability Reserved
Dec 2, 2016