Critical Remote Code Execution vulnerability has been discovered in the most popular and most feature-rich PDF reader, Adobe Acrobat Reader DC.
The vulnerability has the power to perform a stack-based buffer overflow all the executing the orbitary code when users open the vulnerable Adobe document.This Critical RCE vulnerability affected the version of Adobe Acrobat Reader DC 2018.009.20044 and Below.
Albeit the reason anticipated as to why Adobe was targeted is quite simple to fathom it has a major user base, is the most prevalent and most feature-rich PDF reader and is usually a default PDF reader on systems and incorporates into web browsers as a plugin for rendering PDFs.
This could be hands down mishandled by an attacker utilizing the vulnerability for an additional attack surface.
Here is a sample document ID:
Nonetheless this vulnerability has been reported to Adobe, patch has been made and released an update on 2018 -02-13 with CVE-2018-4901.
To read the original article: