6253 matches found
Critical Security Fixes from Adobe, Microsoft
Adobe has released updates to fix dozens of vulnerabilities in its Acrobat, Reader and Flash Player software. Separately, Microsoft today issued patches to plug 48 security holes in Windows and other Microsoft products. If you use Windows or Adobe products, it's time once again to get your patche...
Flash Player Marches Toward End, Patches Two Code Execution Bugs in Latest Update
Adobe today pushed out its first Flash Player update since announcing two weeks ago that it would stop distributing and updating the software in 2020. Flash has been at the center of many targeted attacks and exploit kit activity, and despite numerous improvements to the product including...
Adobe Acrobat and Reader Memory Corruption (APSB17-24: CVE-2017-11227)
A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to the record component of EMF files. A remote attacker might exploit this issue by convincing a victim to open a specially crafted PDF file...
Adobe Acrobat and Reader Memory Corruption (APSB17-24: CVE-2017-11263)
A memory corruption vulnerability exists in Adobe Acrobat and Reader. A remote attacker may exploit this issue by enticing a target user to open a malicious PDF file with an affected version of Adobe Reader or Acrobat...
Adobe Acrobat and Reader Type Confusion (APSB17-24: CVE-2017-11257)
A type confusion overflow vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to how Adobe processes XFA layout. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...
Adobe Acrobat And Reader Use After Free (APSB17-24: CVE-2017-11223)
A use after free vulnerability exists in Adobe Acrobat And Reader. The vulnerability is due to a freed memory area being reused by another object. This provides a remote attacker with an unintended memory access -- potentially leading to code corruption, control-flow hijack, or information leak...
Adobe Acrobat and Reader Heap Overflow (APSB17-24: CVE-2017-11220)
A heap overflow vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to the way Adobe processes memory bounds checks. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...
Adobe Acrobat And Reader Use After Free (APSB17-24: CVE-2017-11224)
A use after free vulnerability exists in Adobe Acrobat And Reader. The vulnerability is due to a freed memory area being reused by another object. This provides a remote attacker with an unintended memory access -- potentially leading to code corruption, control-flow hijack, or information leak...
Adobe Acrobat and Reader Information Disclosure (APSB17-24: CVE-2017-3115)
A Information Disclosure vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...
Adobe Acrobat and Reader Use After Free (APSB17-24: CVE-2017-11256)
A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to how Adobe processes XFA layout. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file with Adobe Reader...
Adobe Acrobat and Reader Memory Corruption (APSB17-24: CVE-2017-11222)
A memory corruption vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to the way Adobe processes embedded RPC data. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...
Adobe Acrobat and Reader Memory Corruption (APSB17-24: CVE-2017-11255)
A memory corruption vulnerability exists in TIFF files. The vulnerability is due to how the image conversion engine processes TIFF files. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted TIFF file...
Adobe Acrobat and Reader Type Confusion (APSB17-24: CVE-2017-11221)
A type confusion overflow vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to the way Adobe processes font locations. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...
Adobe Acrobat and Reader Security Bypass (APSB17-24: CVE-2017-11229)
A code injection vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to the FDF component of Adobe Reader and Acrobat. A remote attacker might exploit this issue by convincing a victim to open a specially crafted PDF file...
Adobe Acrobat and Reader Use After Free (APSB17-24: CVE-2017-11254)
A use-after-free vulnerability exists in Adobe Acrobat and Acrobat Reader. The vulnerability is dueto an error while processing addAnnot method. A remote attacker could exploit this vulnerability by enticing a user to open a maliciously crafted document...
Adobe Acrobat and Reader Memory Corruption (APSB17-24: CVE-2017-11261)
A memory corruption vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to the way Adobe Acrobat and Reader improperly processes specially crafted Enhanced Metafile EMF image format files. A remote attacker can exploit this issue by enticing a victim to open a specially...
Adobe Acrobat and Reader Memory Corruption (APSB17-24: CVE-2017-11216)
A memory corruption vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to the way Adobe Acrobat and Reader improperly processes specially crafted Enhanced Metafile EMF image format files. A remote attacker can exploit this issue by enticing a victim to open a specially...
Adobe Acrobat and Reader Use After Free (APSB17-24: CVE-2017-11219)
A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...
Adobe Acrobat and Reader Memory Corruption (APSB17-24: CVE-2017-11251)
A memory corruption vulnerability has been reported in Adobe Acrobat and Reader. The vulnerability is due to an error in Adobe Acrobat and Reader while parsing a corrupted file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...
Adobe Acrobat and Reader Memory Corruption (APSB17-24: CVE-2017-11269)
A memory corruption vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to how the image conversion engine processes Enhanced Metafile Format EMF. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted EMF file with Adobe...