Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-7617

Overview

Vulnerability Score Unknown
CVE Id CVE-2015-7617
Last Modified 14 Oct 2015 07:59:51
Published 14 Oct 2015 07:59:50
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NONE
Access Complexity NONE
Authentication NONE

CVE-2015-7617

Summary

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to execute arbitrary code by leveraging improper EScript exception handling, a different vulnerability than CVE-2015-5586, CVE-2015-6683, CVE-2015-6684, CVE-2015-6687, CVE-2015-6688, CVE-2015-6689, CVE-2015-6690, CVE-2015-6691, CVE-2015-7615, and CVE-2015-7621.

Vulnerable Systems


References

CONFIRM - https://helpx.adobe.com/security/products/acrobat/apsb15-24.html

MISC - http://www.zerodayinitiative.com/advisories/ZDI-15-492

Related Patches

APSB15-24 Adobe Acrobat Reader DC (Continuous) 2015.009.20069 (15.009.20069) for Mac OS X (See Notes)

APSB15-24 Adobe Reader 10.1.16 for Mac OS X (See Notes)

APSB15-24 Adobe Reader 11.0.13 for Mac OS X (See Notes)

APSB15-24 Adobe Acrobat 11.0.13 for Mac OS X (See Notes)

APSB15-24 Adobe Acrobat DC (Classic) 2015.006.30094 (15.006.30094) for Mac OS X (See Notes)

APSB15-24 Adobe Acrobat DC (Continuous) 2015.009.20069 (15.009.20069) for Mac OS X (See Notes)


Last Updated: 27 May 2016 11:10:12