all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Analysis of Adobe Acrobat Pro DC Solid Framework Heap-based Buffer Overflow Vulnerability (CVE-2021-44708)

Add to bookmarks
March 4, 2022, 10:23 p.m. | Kai Lu

Security Boulevard securityboulevard.com

In January 2022, Adobe released a security update for vulnerabilities in Adobe Acrobat and Reader. The update fixed five vulnerabilities (CVE-2021-44703, CVE-2021-44708, CVE-2021-44709, CVE-2021-44740, and CVE-2021-44741) discovered by Zscaler’s ThreatLabz. These five vulnerabilities existed in the Adobe Acrobat Pro DC Solid Framework. Adobe uses the Solid Framework for the conversion of PDF files to Microsoft Office files in Adobe Acrobat. In this blog, we present our analysis of CVE-2021-44708, a heap-based buffer overflow vulnerability in Adobe Acrobat Pro DC. Foxit’s …

acrobat adobe analysis buffer buffer overflow cve dc framework overflow pro solid vulnerability

Visit resource

More from securityboulevard.com / Security Boulevard

From DAST to dawn: why fuzzing is better solution | Code Intelligence 51 minutes ago | securityboulevard.com
api security application applications application security +27
Scaling Application Security With Application Security Posture Management (ASPM) 3 hours ago | securityboulevard.com
application application security application security posture management aspm +13
Crunching Some Numbers on PHP Support 7 hours ago | securityboulevard.com
application breaking can continue +16
Google Chrome DBSC Protection Tested Against Cookie Attacks 8 hours ago | securityboulevard.com
attacks authentication browser browser security +31
What is SOC 2 Compliance Audit? 10 hours ago | securityboulevard.com
audit audits businesses client +27
The Dark Side of EDR: Repurpose EDR as an Offensive Tool 11 hours ago | securityboulevard.com
capabilities code dark edr +13
NTA Email Alert Configuration 13 hours ago | securityboulevard.com
addresses alert basic configuration +8
The Ultimate Guide to SBIR and STTR Program Budgeting 15 hours ago | securityboulevard.com
budgeting budgets can corporations +14
Vulnerabilities for AI and ML Applications are Skyrocketing 18 hours ago | securityboulevard.com
ai ai and ml in security ai development applications +34

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Security Engineer, Incident Response

@ Databricks | Remote - Netherlands
View on infosec-jobs.com

Associate Vulnerability Engineer - Mid-Atlantic region (Part-Time)

@ GuidePoint Security LLC | Remote in VA, MD, PA, NC, DE, NJ, or DC
View on infosec-jobs.com

Data Security Architect

@ Accenture Federal Services | Washington, DC
View on infosec-jobs.com

Identity Security Administrator

@ SailPoint | Pune, India
View on infosec-jobs.com
View more jobs