HTTP: Adobe Acrobat ImageConversion PCX Parsing Out-Of-Bounds Write
An out of bounds write vulnerability has been reported in the ImageConversion component of Adobe Acrobat. Successful exploitation of the vulnerability could lead to remote code execution under the context of the user.
Extended Description
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability in image conversion related to processing of the PCX (picture exchange) file format. Successful exploitation could lead to arbitrary code execution.
References
CVE: CVE-2017-3036
Short Name
HTTP:STC:ADOBE:ACROBAT-OOB
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Acrobat Adobe CVE-2017-3036 ImageConversion Out-Of-Bounds PCX Parsing Write
Release Date
05/05/2017
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3377
False Positive
Unknown
CVSS Score
9.3