mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-05-28 17:21:57 +00:00
82 lines
2.9 KiB
JSON
82 lines
2.9 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "psirt@adobe.com",
|
|
"DATE_PUBLIC": "2017-08-08T00:00:00",
|
|
"ID": "CVE-2017-3116",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "Acrobat Reader",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "2017.009.20058 and earlier"
|
|
},
|
|
{
|
|
"version_value": "2017.008.30051 and earlier"
|
|
},
|
|
{
|
|
"version_value": "2015.006.30306 and earlier"
|
|
},
|
|
{
|
|
"version_value": "11.0.20 and earlier"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "Adobe Systems Incorporated"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the MakeAccessible plugin when parsing TrueType font data. Successful exploitation could lead to arbitrary code execution."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Memory Corruption"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "https://helpx.adobe.com/security/products/acrobat/apsb17-24.html",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://helpx.adobe.com/security/products/acrobat/apsb17-24.html"
|
|
},
|
|
{
|
|
"name": "1039098",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://www.securitytracker.com/id/1039098"
|
|
},
|
|
{
|
|
"name": "100179",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/100179"
|
|
}
|
|
]
|
|
}
|
|
} |