漏洞标题
N/A
漏洞描述信息
在Adobe Acrobat和Reader中发现了一种问题:2017.012.20098和更早版本,2017.011.30066和更早版本,2015.006.30355和更早版本,以及11.0.22和更早版本。这个漏洞是由于读取数据超出目标缓冲区末尾的计算导致的;该计算是图像转换模块中增强型元数据格式(EMF)处理的一部分。在访问内部数据结构字段时使用无效的(范围不符)指针偏移量造成了这个漏洞。成功攻击可能会导致敏感数据泄露。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. This vulnerability occurs as a result of a computation that reads data that is past the end of the target buffer; the computation is a part of Enhanced Metafile Format (EMF) processing within the image conversion module. The use of an invalid (out-of-range) pointer offset during access of internal data structure fields causes the vulnerability. A successful attack can lead to sensitive data exposure.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
多款Adobe产品image conversion模块缓冲区错误漏洞
漏洞描述信息
Adobe Acrobat DC for Windows和Macintosh等都是美国奥多比(Adobe)公司的基于Windows和Macintosh平台的产品。Adobe Acrobat DC for Windows和Macintosh是一套桌面版PDF解决方案;Acrobat Reader DC for Windows和Macintosh是一套用于查看、打印和批注PDF的工具。image conversion moudle是其中的一个图片格式转换模块。 多款Adobe产品中的image convers
CVSS信息
N/A
漏洞类别
缓冲区错误