|
|
|||
| Rule General Information |
|---|
| Release Date: | 2017-07-07 | |
| Rule Name: | Adobe Acrobat and Reader JPEG2000 Parsing Heap-based Buffer Overflow Vulnerability (CVE-2017-3055) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable heap overflow vulnerability in JPEG 2000 parsing of the fragment list tag. Successful exploitation could lead to arbitrary code execution. | |
| Impact: | A buffer overflow vulnerability can be triggered by an attacker in the context of the vulnerable product. Further attacks include arbitrary code execution and denial of service. | |
| Affected OS: | Windows | |
| Reference: | SecurityFocusBID:97549 SecurityTrackerID:1038228 AdobeSecurityBulletins:apsb17-11 |
|
| Solutions |
|---|
| Adobe has issued a fix on the official website. For more advisory, please visit https://helpx.adobe.com/security/products/acrobat/apsb17-11.html |