What is the severity of CVE-2016-6937?

CVE-2016-6937 has a high severity rating due to its potential to allow arbitrary code execution or denial of service.

How do I fix CVE-2016-6937?

To fix CVE-2016-6937, update Adobe Reader and Acrobat to versions 11.0.17 or later, and the appropriate versions of Acrobat DC.

What software is affected by CVE-2016-6937?

CVE-2016-6937 affects Adobe Reader and Acrobat versions prior to 11.0.17, and several versions of Acrobat DC before specified updates.

What types of attacks can exploit CVE-2016-6937?

CVE-2016-6937 can be exploited to execute arbitrary code or to cause memory corruption resulting in denial of service.

When was CVE-2016-6937 disclosed?

CVE-2016-6937 was disclosed in 2016, highlighting vulnerabilities in Adobe products prior to specific updates.

Vulnerability/
CVE-2016-6937

critical

CWE

119

17/9/2016

6/8/2024

CVE-2016-6937: Buffer Overflow

First published: Sat Sep 17 2016(Updated: )

Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006.30198, and Acrobat and Acrobat Reader DC Continuous before 15.017.20050 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4191, CVE-2016-4192, CVE-2016-4193, CVE-2016-4194, CVE-2016-4195, CVE-2016-4196, CVE-2016-4197, CVE-2016-4198, CVE-2016-4199, CVE-2016-4200, CVE-2016-4201, CVE-2016-4202, CVE-2016-4203, CVE-2016-4204, CVE-2016-4205, CVE-2016-4206, CVE-2016-4207, CVE-2016-4208, CVE-2016-4211, CVE-2016-4212, CVE-2016-4213, CVE-2016-4214, CVE-2016-4250, CVE-2016-4251, CVE-2016-4252, CVE-2016-4254, CVE-2016-4265, CVE-2016-4266, CVE-2016-4267, CVE-2016-4268, CVE-2016-4269, and CVE-2016-4270.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Apple iOS and macOS
Microsoft Windows Operating System
Adobe Acrobat Reader	<=11.0.16
Adobe Acrobat Reader DC	<=15.006.30174
Adobe Acrobat Reader DC	<=15.016.20045
Adobe Acrobat Reader	<=15.006.30174
Adobe Acrobat Reader	<=15.016.20045
Adobe Acrobat Reader	<=11.0.16

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-6937?
CVE-2016-6937 has a high severity rating due to its potential to allow arbitrary code execution or denial of service.
How do I fix CVE-2016-6937?
To fix CVE-2016-6937, update Adobe Reader and Acrobat to versions 11.0.17 or later, and the appropriate versions of Acrobat DC.
What software is affected by CVE-2016-6937?
CVE-2016-6937 affects Adobe Reader and Acrobat versions prior to 11.0.17, and several versions of Acrobat DC before specified updates.
What types of attacks can exploit CVE-2016-6937?
CVE-2016-6937 can be exploited to execute arbitrary code or to cause memory corruption resulting in denial of service.
When was CVE-2016-6937 disclosed?
CVE-2016-6937 was disclosed in 2016, highlighting vulnerabilities in Adobe products prior to specific updates.

agent/type
agent/severity
agent/weakness
agent/references
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/apple
canonical/apple ios and macos
vendor/microsoft
canonical/microsoft windows operating system
vendor/adobe
canonical/adobe acrobat reader
version/adobe acrobat reader/11.0.16
canonical/adobe acrobat reader dc
version/adobe acrobat reader dc/15.006.30174
version/adobe acrobat reader dc/15.016.20045
version/adobe acrobat reader/15.006.30174
version/adobe acrobat reader/15.016.20045