CVE-2017-2975 – Adobe Digital Editions PDF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2017-2975
Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure. Adobe Digital Editions versión 4.5.3 y versiones anteriores tienen una vulnerabilidad de sobre lectura de búfer explotable. Explotación exitosa podría conducir a divulgación de información. This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Digital Editions. • http://www.securityfocus.com/bid/96195 http://www.securitytracker.com/id/1037816 https://helpx.adobe.com/security/products/Digital-Editions/apsb17-05.html • CWE-125: Out-of-bounds Read •
CVE-2017-2978 – Adobe Digital Editions PDF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2017-2978
Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure. Adobe Digital Editions versión 4.5.3 y versiones anteriores tienen una vulnerabilidad de sobre lectura de búfer explotable. Explotación exitosa podría conducir a divulgación de información. This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Digital Editions. • http://www.securityfocus.com/bid/96195 http://www.securitytracker.com/id/1037816 https://helpx.adobe.com/security/products/Digital-Editions/apsb17-05.html • CWE-125: Out-of-bounds Read •
CVE-2017-2974 – Adobe Digital Editions PDF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2017-2974
Adobe Digital Editions versions 4.5.3 and earlier have an exploitable buffer over-read vulnerability. Successful exploitation could lead to information disclosure. Adobe Digital Editions versión 4.5.3 y versiones anteriores tienen una vulnerabilidad de sobre lectura de búfer explotable. Explotación exitosa podría conducir a divulgación de información. This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Digital Editions. • http://www.securityfocus.com/bid/96195 http://www.securitytracker.com/id/1037816 https://helpx.adobe.com/security/products/Digital-Editions/apsb17-05.html • CWE-125: Out-of-bounds Read •
CVE-2016-7889
https://notcve.org/view.php?id=CVE-2016-7889
Adobe Digital Editions versions 4.5.2 and earlier has an issue with parsing crafted XML entries that could lead to information disclosure. Adobe Digital Editions versión 4.5.2 y versiones anteriores tiene un problema de análisis de entradas diseñadas XLM que podría conducir a la divulgación de información. • http://www.securityfocus.com/bid/94879 http://www.securitytracker.com/id/1037466 https://helpx.adobe.com/security/products/Digital-Editions/apsb16-45.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2016-7888 – Adobe Digital Editions FlateDecode Out-of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2016-7888
Adobe Digital Editions versions 4.5.2 and earlier has an important vulnerability that could lead to memory address leak. Adobe Digital Editions versión 4.5.2 y versiones anteriores tiene una vulnerabilidad importante que podría conducir a filtraciones de direcciones de memoria. This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Digital Editions. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of FlateDecode streams in PDF files. The process does not properly validate user-supplied data which can result in a read past the end of an allocated object. • http://www.securityfocus.com/bid/94880 http://www.securitytracker.com/id/1037466 http://www.zerodayinitiative.com/advisories/ZDI-16-636 https://helpx.adobe.com/security/products/Digital-Editions/apsb16-45.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •