Arbitrary Code Execution Vulnerability in Adobe Acrobat Reader's Image Conversion Engine

Arbitrary Code Execution Vulnerability in Adobe Acrobat Reader's Image Conversion Engine

CVE-2017-11234 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing TIFF data related to the way how the components of each pixel are stored. Successful exploitation could lead to arbitrary code execution.

Learn more about our Web Application Penetration Testing UK.