First published: Wed Jan 11 2017(Updated: )
Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability when processing TIFF image data. Successful exploitation could lead to arbitrary code execution.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Adobe Acrobat Reader | <=11.0.18 | |
Adobe Acrobat Reader DC | <=15.006.30244 | |
Adobe Acrobat Reader DC | <=15.020.20042 | |
Adobe Acrobat Reader | <=15.006.30244 | |
Adobe Acrobat Reader | <=15.020.20042 | |
Adobe Acrobat Reader | <=11.0.18 | |
Apple iOS and macOS | ||
Microsoft Windows Operating System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-2942 is classified as a critical severity vulnerability due to the potential for arbitrary code execution.
To fix CVE-2017-2942, update Adobe Acrobat Reader and Acrobat DC to the latest versions that address this vulnerability.
CVE-2017-2942 affects Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, and 11.0.18 and earlier.
Successful exploitation of CVE-2017-2942 could allow an attacker to execute arbitrary code on the affected system.
There are no official workarounds for CVE-2017-2942; patching the software is the recommended mitigation.