SSD Advisory – Adobe Reader DC – execMenuItem Off-by-One Heap Buffer Overflow

Vulnerability Summary The following advisory describes a JavaScript execMenuItem off-by-One heap buffer overflow, that can potentially lead to Remote Code Execution, found in Adobe Reader DC version 15.23.20056.213124. Credit An independent security researcher, Steven Seeley, has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program Vendor response The vendor has released patches to address … Continue reading SSD Advisory – Adobe Reader DC – execMenuItem Off-by-One Heap Buffer Overflow

This is a Security Bloggers Network syndicated blog post authored by SSD / Maor Schwartz. Read the original post at: SecuriTeam Blogs