Arbitrary Code Execution via Crafted JP2K Record Types in Adobe Reader and Acrobat

Arbitrary Code Execution via Crafted JP2K Record Types in Adobe Reader and Acrobat

CVE-2011-0602 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via crafted JP2K record types in a JPEG2000 image in a PDF file, which causes heap corruption, a different vulnerability than CVE-2011-0596, CVE-2011-0598, and CVE-2011-0599.

Learn more about our Web Application Penetration Testing UK.