{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-01-07T00:00:00", "descriptions": [{"lang": "en", "value": "Double free vulnerability in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code via a crafted ExtGState dictionary."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-05T14:57:01", "orgId": "078d4453-3bcd-4900-85e6-15281da43538", "shortName": "adobe"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://zerodayinitiative.com/advisories/ZDI-16-017"}, {"name": "1034646", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1034646"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://helpx.adobe.com/security/products/acrobat/apsb16-02.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@adobe.com", "ID": "CVE-2016-0935", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Double free vulnerability in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code via a crafted ExtGState dictionary."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://zerodayinitiative.com/advisories/ZDI-16-017", "refsource": "MISC", "url": "http://zerodayinitiative.com/advisories/ZDI-16-017"}, {"name": "1034646", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1034646"}, {"name": "https://helpx.adobe.com/security/products/acrobat/apsb16-02.html", "refsource": "CONFIRM", "url": "https://helpx.adobe.com/security/products/acrobat/apsb16-02.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T22:38:41.056Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://zerodayinitiative.com/advisories/ZDI-16-017"}, {"name": "1034646", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1034646"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://helpx.adobe.com/security/products/acrobat/apsb16-02.html"}]}]}, "cveMetadata": {"assignerOrgId": "078d4453-3bcd-4900-85e6-15281da43538", "assignerShortName": "adobe", "cveId": "CVE-2016-0935", "datePublished": "2016-01-14T02:00:00", "dateReserved": "2015-12-22T00:00:00", "dateUpdated": "2024-08-05T22:38:41.056Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*", "matchCriteriaId": "C58D9C69-59AC-4C31-8813-DF07C322568E", "versionEndIncluding": "15.006.30097", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*", "matchCriteriaId": "000C0EBD-E41C-471E-B71A-5CD418594EF5", "versionEndIncluding": "15.009.20077", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*", "matchCriteriaId": "91134715-4C87-4F5A-9B5A-11A6B66ED00A", "versionEndIncluding": "15.006.30097", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*", "matchCriteriaId": "C4B9A613-9E00-4D4E-8780-471E913CA60D", "versionEndIncluding": "15.009.20077", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*", "matchCriteriaId": "0FF5999A-9D12-4CDD-8DE9-A89C10B2D574", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:*:*:*:*", "matchCriteriaId": "AAB3A419-D57B-4E1E-83D3-34A2B73448A6", "versionEndIncluding": "11.0.13", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "829ED66F-149C-4EC5-B9F1-5DD678AF40DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "E72C3C61-511E-4977-B029-70277C68E24D", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "47478166-EE66-4837-A6C0-0A519F9EDD26", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "C4E8E909-3277-429B-9CB2-973A606BB4A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "D1F0F0C4-0008-452E-99F5-6264465C3FFC", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "E554FA7F-4F54-4BDD-80EB-0566805D995B", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "A48CD244-BCF6-4D0F-B07D-44304493BCFD", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "86A84BB0-85D3-47E8-BC90-291E8C2CCEEC", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "37283AD4-4B3F-48AB-A3DD-C33871CCB5DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "85C3571E-43F0-41D3-840F-A811B88FFFC1", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.10:*:*:*:*:*:*:*", "matchCriteriaId": "D1D97472-841C-471C-8668-AF96A41A1B7F", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.11:*:*:*:*:*:*:*", "matchCriteriaId": "83BEA317-8DD4-4C4D-ADD1-17EA314F31DD", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat_reader:11.0.12:*:*:*:*:*:*:*", "matchCriteriaId": "78D35D0E-E63A-4495-8318-45177838A40C", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*", "matchCriteriaId": "0FF5999A-9D12-4CDD-8DE9-A89C10B2D574", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*", "matchCriteriaId": "DDDDFD6D-1CEF-42E6-9FB4-BFA3DE675CA3", "versionEndIncluding": "11.0.13", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "2643209D-1A36-4E2F-836A-0521F6932A99", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "51C67ABD-5800-46DD-9E81-2A586698BC90", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "F9FF4675-A9FF-4B0F-BBC6-D29B6324D27D", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "76CE9DE1-FFB6-483B-A76C-38819C1407B9", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "AA71918B-F2B2-442B-AA12-3E16759B0674", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "15ACC0AD-EFB5-4C96-888A-3E8A1C35E64B", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "3BBFA7D7-1A9E-4751-A14A-62C2DB2672A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "106D9571-59BF-4056-B7CD-F70FC3F1B73B", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "8FD7CF1E-CF36-4291-B17F-67A070CBE2EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "71DB447D-5C36-458E-BD07-4FC3CB26FDCE", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.10:*:*:*:*:*:*:*", "matchCriteriaId": "80D16772-02BF-4046-9C47-A25D07DB7F70", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.11:*:*:*:*:*:*:*", "matchCriteriaId": "FAF0D04A-B95D-4B50-ACE8-DA3AA6ED7C54", "vulnerable": true}, {"criteria": "cpe:2.3:a:adobe:acrobat:11.0.12:*:*:*:*:*:*:*", "matchCriteriaId": "812B6806-B488-4D8C-B942-9F3174ECD85D", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*", "matchCriteriaId": "0FF5999A-9D12-4CDD-8DE9-A89C10B2D574", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Double free vulnerability in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code via a crafted ExtGState dictionary."}, {"lang": "es", "value": "Vulnerabilidad de liberaci\u00f3n doble en Adobe Reader y Acrobat en versiones anteriores a 11.0.14, Acrobat y Acrobat Reader DC Classic en versiones anteriores a 15.006.30119 y Acrobat y Acrobat Reader DC Continuous en versiones anteriores a 15.010.20056 en Windows y OS X permite a atacantes ejecutar c\u00f3digo arbitrario a trav\u00e9s de un diccionario ExtGState manipulado."}], "evaluatorComment": "<a href=\"http://cwe.mitre.org/data/definitions/415.html\">CWE-415: Double Free</a>", "id": "CVE-2016-0935", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-01-14T05:59:04.343", "references": [{"source": "psirt@adobe.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1034646"}, {"source": "psirt@adobe.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://zerodayinitiative.com/advisories/ZDI-16-017"}, {"source": "psirt@adobe.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://helpx.adobe.com/security/products/acrobat/apsb16-02.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1034646"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://zerodayinitiative.com/advisories/ZDI-16-017"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://helpx.adobe.com/security/products/acrobat/apsb16-02.html"}], "sourceIdentifier": "psirt@adobe.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}