Vulnerability Description
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3053, CVE-2015-3054, CVE-2015-3059, and CVE-2015-3075.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Acrobat | 10.1.0 |
| Apple | Mac Os X | All versions |
| Microsoft | Windows | All versions |
| Adobe | Acrobat Reader | 10.1.0 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/74602Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1032284Third Party AdvisoryVDB Entry
- http://www.zerodayinitiative.com/advisories/ZDI-15-213Third Party AdvisoryVDB Entry
- https://helpx.adobe.com/security/products/reader/apsb15-10.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/74602Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1032284Third Party AdvisoryVDB Entry
- http://www.zerodayinitiative.com/advisories/ZDI-15-213Third Party AdvisoryVDB Entry
- https://helpx.adobe.com/security/products/reader/apsb15-10.htmlPatchVendor Advisory
FAQ
What is CVE-2015-3055?
CVE-2015-3055 is a vulnerability with a CVSS score of 7.5 (HIGH). Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different...
How severe is CVE-2015-3055?
CVE-2015-3055 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-3055?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Acrobat, Apple Mac Os X, Microsoft Windows, Adobe Acrobat Reader.