Type Confusion Vulnerability in Adobe Acrobat Reader's XSLT Engine: Arbitrary Code Execution

CVE-2017-2962 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable type confusion vulnerability in the XSLT engine related to localization functionality. Successful exploitation could lead to arbitrary code execution.

Learn more about our Web Application Penetration Testing UK.