CVE-2016-0938
HIGHAdobe Reader/Acrobat <11.0.14, DC Classic <15.006.30119, DC Continu...
Title source: llmDescription
The AcroForm plugin in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0931, CVE-2016-0933, CVE-2016-0936, CVE-2016-0939, CVE-2016-0942, CVE-2016-0944, CVE-2016-0945, and CVE-2016-0946.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-16-013
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1034646
Patch, Vendor Advisory x_refsource_confirm
https://helpx.adobe.com/security/products/acrobat/apsb16-02.html
Scores
CVSS v3
8.8
EPSS
0.0532
EPSS Percentile
91.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-119
Status
published
Products (32)
adobe/acrobat
11.0.0
adobe/acrobat
11.0.1
adobe/acrobat
11.0.2
adobe/acrobat
11.0.3
adobe/acrobat
11.0.4
adobe/acrobat
11.0.5
adobe/acrobat
11.0.6
adobe/acrobat
11.0.7
adobe/acrobat
11.0.8
adobe/acrobat
11.0.9
... and 22 more
Published
Jan 14, 2016
Tracked Since
Feb 18, 2026