N/A

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a heap overflow vulnerability. The vulnerability is triggered by crafted TIFF data within an XPS file, which causes an out of bounds memory access. An attacker can potentially leverage the vulnerability to corrupt sensitive data or execute arbitrary code.

N/A

N/A

多款Adobe产品缓冲区错误漏洞

Acrobat DC Continuous Track等都是美国奥多比（Adobe）公司的产品。Acrobat DC Continuous Track是一款桌面版PDF解决方案的连续更新版本。Reader DC Continuous Track是一款PDF阅读工具的连续更新版本。 多款Adobe产品中存在堆溢出漏洞。攻击者可借助XPS文件中特制的TIFF数据利用该漏洞执行任意代码或损坏敏感信息（内存访问越界）。基于Windows和Macintosh平台的以下产品和版本受到影响：Adobe Acrobat

N/A

N/A