CVE-2016-4209

EUVD-2016-5210
Heap-based buffer overflow in Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006.30198, and Acrobat and Acrobat Reader DC Continuous before 15.017.20050 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
Affected Products (NVD)
VendorProductVersion
adobeacrobat
𝑥
≤ 11.0.16
adobeacrobat_dc
𝑥
≤ 15.006.30174
adobeacrobat_dc
𝑥
≤ 15.016.20045
adobeacrobat_reader_dc
𝑥
≤ 15.006.30174
adobeacrobat_reader_dc
𝑥
≤ 15.016.20045
adobereader
𝑥
≤ 11.0.16
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/91711
http://www.securitytracker.com/id/1036281
https://helpx.adobe.com/security/products/acrobat/apsb16-26.html
http://www.securityfocus.com/bid/91711
http://www.securitytracker.com/id/1036281
https://helpx.adobe.com/security/products/acrobat/apsb16-26.html