Use-after-free vulnerability in Adobe Reader and Acrobat versions 10.x and 11.x, and Acrobat and Acrobat Reader DC Classic and DC Continuous before 2015.006.30094 and 2015.009.20069 respectively, allowing arbitrary code execution through improper EScript exception handling.

Use-after-free vulnerability in Adobe Reader and Acrobat versions 10.x and 11.x, and Acrobat and Acrobat Reader DC Classic and DC Continuous before 2015.006.30094 and 2015.009.20069 respectively, allowing arbitrary code execution through improper EScript exception handling.

CVE-2015-7617 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to execute arbitrary code by leveraging improper EScript exception handling, a different vulnerability than CVE-2015-5586, CVE-2015-6683, CVE-2015-6684, CVE-2015-6687, CVE-2015-6688, CVE-2015-6689, CVE-2015-6690, CVE-2015-6691, CVE-2015-7615, and CVE-2015-7621.

Learn more about our Web Application Penetration Testing UK.