KLA10440
Multiple vulnerabilities in Adobe Acrobat & Reader

Multiple critical vulnerabilities have been found in Adobe Acrobat and Reader. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information, execute arbitrary code and read arbitrary files.

Below is a complete list of vulnerabilities

1. use-after-free vulnerability can be exploited via unspecified vectors;
2. Unknown vectors can be exploited via XML external entity declaration;
3. Race conditions can be exploited via an NTFS junction;
4. Unknown vectors can be exploited via JavaScript API;
5. An integer overflow can be exploited via unspecified vectors;
6. Unlnown vectors can be exploited remotely;
7. Heap based buffer overflow can be exploited via unknown vectors.

Adobe Reader XI 11.0.09 and earlier
Adobe Reader X 10.1.12 and earlier
Adobe Acrobat XI 11.0.09 and earlier
Adobe Acrobat X 10.1.12 and earlier

Update to latest version
Get reader