Use-after-free vulnerability in Adobe Reader and Acrobat versions 10.x and 11.x, and Acrobat and Acrobat Reader DC Classic and Continuous versions before 2015.006.30094 and 2015.009.20069 respectively, allows arbitrary code execution via a crafted Optional Content Groups (OCG) object in a WillSave document action.

Use-after-free vulnerability in Adobe Reader and Acrobat versions 10.x and 11.x, and Acrobat and Acrobat Reader DC Classic and Continuous versions before 2015.006.30094 and 2015.009.20069 respectively, allows arbitrary code execution via a crafted Optional Content Groups (OCG) object in a WillSave document action.

CVE-2015-6688 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to execute arbitrary code via a crafted Optional Content Groups (OCG) object in a WillSave document action, a different vulnerability than CVE-2015-5586, CVE-2015-6683, CVE-2015-6684, CVE-2015-6687, CVE-2015-6689, CVE-2015-6690, CVE-2015-6691, CVE-2015-7615, CVE-2015-7617, and CVE-2015-7621.

Learn more about our Web Application Penetration Testing UK.