all InfoSec news
Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution
Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org
Multiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution.
- Adobe Acrobat and Adobe Reader are used to view, create, print, and manage PDF files
Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts …
accounts acrobat adobe adobe acrobat adobe reader change code code execution context data delete exploitation files install manage pdf print privileges products reader rights vulnerabilities