ZDI-23-1696: Adobe Acrobat Reader DC Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability | allinfosecnews.com

Nov. 15, 2023, 6 a.m. |

ZDI: Published Advisories www.zerodayinitiative.com

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2023-44371.

acrobat acrobat reader adobe adobe acrobat arbitrary code attackers code code execution cvss exploit file font parsing malicious out-of-bounds out-of-bounds write page parsing rating reader remote code remote code execution target vulnerability zdi

More from www.zerodayinitiative.com / ZDI: Published Advisories

ZDI-23-1752: Delta Electronics InfraSuite Device Master UploadMedia Directory Traversal Remote Code Execution Vulnerability 1 day, 22 hours ago | www.zerodayinitiative.com

arbitrary code attackers authentication code +17

ZDI-23-1756: Delta Electronics InfraSuite Device Master PlayWaveFile Directory Traversal Information Disclosure Vulnerability 1 day, 22 hours ago | www.zerodayinitiative.com

attackers authentication cve cves +18

ZDI-23-1754: Delta Electronics InfraSuite Device Master Device-DataCollect Deserialization of Untrusted Data Remote Code Execution Vulnerability 1 day, 22 hours ago | www.zerodayinitiative.com

arbitrary code attackers authentication code +18

ZDI-23-1753: Delta Electronics InfraSuite Device Master Device-Gateway Deserialization of Untrusted Data Remote Code Execution Vulnerability 1 day, 22 hours ago | www.zerodayinitiative.com

arbitrary code attackers authentication code +19

ZDI-23-1755: Delta Electronics InfraSuite Device Master RunScript Exposed Dangerous Method Remote Code Execution Vulnerability 1 day, 22 hours ago | www.zerodayinitiative.com

arbitrary code attackers authentication code +16

ZDI-23-1733: Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code … 4 days, 22 hours ago | www.zerodayinitiative.com

arbitrary code attackers buffer buffer overflow +18

ZDI-23-1734: Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code … 4 days, 22 hours ago | www.zerodayinitiative.com

arbitrary code attackers buffer buffer overflow +18

ZDI-23-1732: Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code … 4 days, 22 hours ago | www.zerodayinitiative.com

arbitrary code attackers buffer buffer overflow +18

ZDI-23-1729: Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Out-Of-Bounds Write Remote Code Execution … 4 days, 22 hours ago | www.zerodayinitiative.com

arbitrary code attackers code code execution +16

Security Specialist

@ Protect Democracy | Remote, US

View on infosec-jobs.com

Cybersecurity Systems Security Engineer II-T

@ ManTech | 809AR - Ft Carson,Colorado Springs,CO

View on infosec-jobs.com

Security Engineer (Supporting NASA at JSC)

@ KBR, Inc. | USA, Houston, 2101 NASA Parkway, Building 21, Texas

View on infosec-jobs.com

Head of Security & IT

@ ORFIUM | Dublin, County Dublin, Ireland

View on infosec-jobs.com

Chief Privacy Officer

@ Nike | Santa Clara,CA

View on infosec-jobs.com

Security Engineer

@ SPINS | Chicago, IL

View on infosec-jobs.com