What is the severity of CVE-2016-1049?

CVE-2016-1049 has a critical severity level due to the potential for arbitrary code execution.

How do I fix CVE-2016-1049?

To fix CVE-2016-1049, you should update Adobe Reader and Acrobat to versions 11.0.16 or later and Acrobat DC to version 15.006.30172 or later.

What products are affected by CVE-2016-1049?

CVE-2016-1049 affects Adobe Acrobat Reader versions up to 11.0.15 and Adobe Acrobat DC Classic and Continuous editions prior to 15.006.30172.

What types of attacks can exploit CVE-2016-1049?

CVE-2016-1049 can be exploited through various unspecified vectors that allow attackers to execute arbitrary code.

On which operating systems does CVE-2016-1049 pose a risk?

CVE-2016-1049 poses a risk on both Windows and OS X operating systems.

Vulnerability/
CVE-2016-1049

critical

CWE

416

11/5/2016

5/8/2024

CVE-2016-1049: Use After Free

First published: Wed May 11 2016(Updated: )

Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1045, CVE-2016-1046, CVE-2016-1047, CVE-2016-1048, CVE-2016-1050, CVE-2016-1051, CVE-2016-1052, CVE-2016-1053, CVE-2016-1054, CVE-2016-1055, CVE-2016-1056, CVE-2016-1057, CVE-2016-1058, CVE-2016-1059, CVE-2016-1060, CVE-2016-1061, CVE-2016-1065, CVE-2016-1066, CVE-2016-1067, CVE-2016-1068, CVE-2016-1069, CVE-2016-1070, CVE-2016-1075, CVE-2016-1094, CVE-2016-1121, CVE-2016-1122, CVE-2016-4102, and CVE-2016-4107.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Apple iOS and macOS
Microsoft Windows Operating System
Adobe Acrobat Reader	<=11.0.15
Adobe Acrobat Reader DC	<=15.006.30121
Adobe Acrobat Reader DC	<=15.010.20060
Adobe Acrobat Reader	<=15.006.30121
Adobe Acrobat Reader	<=15.010.20060
Adobe Acrobat Reader	<=11.0.15

Remedy

https://helpx.adobe.com/security/products/acrobat/apsb16-14.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-1049?
CVE-2016-1049 has a critical severity level due to the potential for arbitrary code execution.
How do I fix CVE-2016-1049?
To fix CVE-2016-1049, you should update Adobe Reader and Acrobat to versions 11.0.16 or later and Acrobat DC to version 15.006.30172 or later.
What products are affected by CVE-2016-1049?
CVE-2016-1049 affects Adobe Acrobat Reader versions up to 11.0.15 and Adobe Acrobat DC Classic and Continuous editions prior to 15.006.30172.
What types of attacks can exploit CVE-2016-1049?
CVE-2016-1049 can be exploited through various unspecified vectors that allow attackers to execute arbitrary code.
On which operating systems does CVE-2016-1049 pose a risk?
CVE-2016-1049 poses a risk on both Windows and OS X operating systems.

agent/references
agent/type
agent/remedy
agent/severity
agent/weakness
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/first-publish-date
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/apple
canonical/apple ios and macos
vendor/microsoft
canonical/microsoft windows operating system
vendor/adobe
canonical/adobe acrobat reader
version/adobe acrobat reader/11.0.15
canonical/adobe acrobat reader dc
version/adobe acrobat reader dc/15.006.30121
version/adobe acrobat reader dc/15.010.20060
version/adobe acrobat reader/15.006.30121
version/adobe acrobat reader/15.010.20060