KLA10575
Multiple vulnerabilities in Adobe products

Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information.

Below is a complete list of vulnerabilities

1. Use-after-free, buffer overflow, memory leak and corruption vulnerabilities can be exploited remotely via an unknown vectors;
2. An unknown vulnerability can be exploited remotely via vectors related to Javascript API;
3. Improper null-pointer dereference can be exploited remotely via an unknown vectors;
4. Improper XML handling can be exploited remotely via an unknown vectors.

NB: At this moment Adobe just reserved CVE numbers for this vulnerabilities. Information can be changed soon.

Adobe Reader XI versions earlier than 11.0.11
Adobe Reader X versions earlier than 10.1.14
Adobe Acrobat XI versions earlier than 11.0.11
Adobe Acrobat X versions earlier than 10.1.14

Update to the latest version
Get Reader

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.