Heap Overflow Vulnerability in Adobe Acrobat Reader's Image Conversion Engine

Heap Overflow Vulnerability in Adobe Acrobat Reader's Image Conversion Engine

CVE-2017-2959 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability in the image conversion engine, related to parsing of color profile metadata. Successful exploitation could lead to arbitrary code execution.

Learn more about our Web Application Penetration Testing UK.