Lucene search
AdobeCVELIST:CVE-2017-16386HistoryDec 09, 2017 - 6:00 a.m.
CVE-2017-16386
2017-12-0906:00:00
adobe
www.cve.org
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. This vulnerability occurs as a result of a computation that reads data that is past the end of the target buffer; the computation is part of the XPS2PDF conversion engine. The use of an invalid (out-of-range) pointer offset during access of internal data structure fields causes the vulnerability. A successful attack can lead to sensitive data exposure.
CNA Affected
[
{
"product": "Adobe Acrobat Reader 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, 11.0.22 and earlier versions",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Adobe Acrobat Reader 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, 11.0.22 and earlier versions"
}
]
}
]Related
checkpoint_advisories
checkpoint_advisories
Adobe Acrobat and Reader Buffer Over-read (APSB17-36: CVE-2017-16386)
2017-11-14 00:00:00
cve
cve
CVE-2017-16386
2017-12-09 06:29:01
nvd
nvd
CVE-2017-16386
2017-12-09 06:29:01
zdi
zdi
prion
prion
Design/Logic Flaw
2017-12-09 06:29:00
kaspersky
kaspersky
KLA11138 Multiple vulnerabilities in Adobe Acrobat&Reader
2017-11-14 00:00:00
nessus
nessus
openvas
openvas
trendmicroblog
trendmicroblog
adobe
adobe
APSB17-36 Security updates available for Adobe Acrobat and Reader
2017-11-14 00:00:00