|
|||
Rule General Information |
---|
Release Date: | 2019-04-09 | |
Rule Name: | Adobe Reader TIFF OOB Memory Corruption Vulnerability (CVE-2017-2965) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the image conversion engine, related to TIFF file parsing. Successful exploitation could lead to arbitrary code execution. | |
Impact: | A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system. | |
Affected OS: | Windows, Linux, FreeBSD, Solaris, Other Unix, Network Device, Mac OS, iOS, Android, Others | |
Reference: | SecurityFocusBID:95345 AdobeSecurityBulletins:apsb17-01 SecurityTrackerID:1037574 ZeroDayInitiative:ZDI-17-010 |
|
Solutions |
---|
Adobe has issued a fix on the official website. For more advisory, please visit: https://helpx.adobe.com/security/products/acrobat/apsb17-01.html |