CVE-2016-1069 Information

Description

Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.16 Acrobat and Acrobat Reader DC Classic before 15.006.30172 and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors a different vulnerability than CVE-2016-1045 CVE-2016-1046 CVE-2016-1047 CVE-2016-1048 CVE-2016-1049 CVE-2016-1050 CVE-2016-1051 CVE-2016-1052 CVE-2016-1053 CVE-2016-1054 CVE-2016-1055 CVE-2016-1056 CVE-2016-1057 CVE-2016-1058 CVE-2016-1059 CVE-2016-1060 CVE-2016-1061 CVE-2016-1065 CVE-2016-1066 CVE-2016-1067 CVE-2016-1068 CVE-2016-1070 CVE-2016-1075 CVE-2016-1094 CVE-2016-1121 CVE-2016-1122 CVE-2016-4102 and CVE-2016-4107.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Reference

http://www.securityfocus.com/bid/90512 http://www.securitytracker.com/id/1035828 http://www.zerodayinitiative.com/advisories/ZDI-16-317 https://helpx.adobe.com/security/products/acrobat/apsb16-14.html

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

9.8