CVE-2017-16367
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. This vulnerability is an instance of a type confusion overflow vulnerability. The vulnerability leads to an out of bounds memory access. Attackers can exploit the vulnerability by using the out of bounds access for unintended reads or writes -- potentially leading to code corruption, control-flow hijack, or an information leak attack.
Se ha descubierto un problema en Adobe Acrobat y Reader: 2017.012.20098 y versiones anteriores, 2017.011.30066 y versiones anteriores, 2015.006.30355 y versiones anteriores y 11.0.22 y versiones anteriores. La vulnerabilidad es un ejemplo de desbordamiento por confusión de tipos. La vulnerabilidad conduce a un acceso a la memoria fuera de límites. Los atacantes pueden explotar esta vulnerabilidad empleando el acceso fuera de límites para lecturas o escrituras involuntarias. Esto podría desembocar en la corrupción de código, secuestro del flujo de control o un ataque de filtrado de información.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-11-01 CVE Reserved
- 2017-12-09 CVE Published
- 2023-09-24 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-704: Incorrect Type Conversion or Cast
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/101815 | Third Party Advisory | |
| http://www.securitytracker.com/id/1039791 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://helpx.adobe.com/security/products/acrobat/apsb17-36.html | 2017-12-14 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Adobe Search vendor "Adobe" | Acrobat Search vendor "Adobe" for product "Acrobat" | <= 11.0.22 Search vendor "Adobe" for product "Acrobat" and version " <= 11.0.22" | - |
Affected
| ||||||
| Adobe Search vendor "Adobe" | Acrobat Search vendor "Adobe" for product "Acrobat" | >= 17.0 <= 17.011.30066 Search vendor "Adobe" for product "Acrobat" and version " >= 17.0 <= 17.011.30066" | - |
Affected
| ||||||
| Adobe Search vendor "Adobe" | Acrobat Dc Search vendor "Adobe" for product "Acrobat Dc" | <= 17.012.20098 Search vendor "Adobe" for product "Acrobat Dc" and version " <= 17.012.20098" | continuous |
Affected
| ||||||
| Adobe Search vendor "Adobe" | Acrobat Dc Search vendor "Adobe" for product "Acrobat Dc" | >= 15.0 <= 15.006.30355 Search vendor "Adobe" for product "Acrobat Dc" and version " >= 15.0 <= 15.006.30355" | classic |
Affected
| ||||||
| Adobe Search vendor "Adobe" | Acrobat Reader Search vendor "Adobe" for product "Acrobat Reader" | <= 11.0.22 Search vendor "Adobe" for product "Acrobat Reader" and version " <= 11.0.22" | - |
Affected
| ||||||
| Adobe Search vendor "Adobe" | Acrobat Reader Search vendor "Adobe" for product "Acrobat Reader" | >= 17.0 <= 17.011.30066 Search vendor "Adobe" for product "Acrobat Reader" and version " >= 17.0 <= 17.011.30066" | - |
Affected
| ||||||
| Adobe Search vendor "Adobe" | Acrobat Reader Dc Search vendor "Adobe" for product "Acrobat Reader Dc" | <= 17.012.20098 Search vendor "Adobe" for product "Acrobat Reader Dc" and version " <= 17.012.20098" | continuous |
Affected
| ||||||
| Adobe Search vendor "Adobe" | Acrobat Reader Dc Search vendor "Adobe" for product "Acrobat Reader Dc" | >= 15.0 <= 15.006.30355 Search vendor "Adobe" for product "Acrobat Reader Dc" and version " >= 15.0 <= 15.006.30355" | classic |
Affected
| ||||||