CVE-2016-1077

CRITICAL

Adobe Acrobat and Reader < 11.0.16 - Remote Code Execution via Memory Corruption

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-1077. PoCs published by Pier-Luc Maltais.

AI-analyzed exploit summary This is a writeup describing a memory corruption vulnerability in Adobe Reader DC <= 15.010.20060, which could lead to remote code execution via a specially crafted image XObject. The PoC is provided as a separate PDF file.

Description

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1037, CVE-2016-1063, CVE-2016-1064, CVE-2016-1071, CVE-2016-1072, CVE-2016-1073, CVE-2016-1074, CVE-2016-1076, CVE-2016-1078, CVE-2016-1080, CVE-2016-1081, CVE-2016-1082, CVE-2016-1083, CVE-2016-1084, CVE-2016-1085, CVE-2016-1086, CVE-2016-1088, CVE-2016-1093, CVE-2016-1095, CVE-2016-1116, CVE-2016-1118, CVE-2016-1119, CVE-2016-1120, CVE-2016-1123, CVE-2016-1124, CVE-2016-1125, CVE-2016-1126, CVE-2016-1127, CVE-2016-1128, CVE-2016-1129, CVE-2016-1130, CVE-2016-4088, CVE-2016-4089, CVE-2016-4090, CVE-2016-4093, CVE-2016-4094, CVE-2016-4096, CVE-2016-4097, CVE-2016-4098, CVE-2016-4099, CVE-2016-4100, CVE-2016-4101, CVE-2016-4103, CVE-2016-4104, and CVE-2016-4105.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Pier-Luc Maltais · textdosmultiple

https://www.exploit-db.com/exploits/39799

View Code ZIP pw:eip

This is a writeup describing a memory corruption vulnerability in Adobe Reader DC <= 15.010.20060, which could lead to remote code execution via a specially crafted image XObject. The PoC is provided as a separate PDF file.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: Adobe Reader DC <= 15.010.20060

No auth needed

Prerequisites: Victim must open a malicious PDF file

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Various Sources x_refsource_misc

https://0patch.blogspot.com/2016/06/writing-0patch-for-acrobat-readers-use.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1035828

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.com/files/137035/Adobe-Reader-DC-15.010.20060-Memory-Corruption.html

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/39799/

Patch, Vendor Advisory x_refsource_confirm

https://helpx.adobe.com/security/products/acrobat/apsb16-14.html

Scores

CVSS v3 9.8

EPSS 0.1741

EPSS Percentile 96.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (6)

adobe/acrobat < 11.0.15

adobe/acrobat_dc < 15.006.30121

adobe/acrobat_dc < 15.010.20060

adobe/acrobat_reader_dc < 15.006.30121

adobe/acrobat_reader_dc < 15.010.20060

adobe/reader < 11.0.15

Published May 11, 2016

Tracked Since Feb 18, 2026