Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability in the XSLT engine related to template manipulation. Successful exploitation could lead to arbitrary code execution.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/95690 | Third Party Advisory VDB Entry |
https://helpx.adobe.com/security/products/acrobat/apsb17-01.html | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: adobe
Published: 2017-01-24T07:40:00
Updated: 2017-01-24T10:57:01
Reserved: 2016-12-02T00:00:00
Link: CVE-2017-2970
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-01-24T07:59:00.177
Modified: 2017-01-26T18:26:54.497
Link: CVE-2017-2970
JSON object: View
Redhat Information
No data.
CWE