Critical severity9.8NVD Advisory· Published May 11, 2016· Updated Jun 17, 2026
CVE-2016-4091
CVE-2016-4091
Description
Heap-based buffer overflow in Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4092.
Affected products
9cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*range: <=11.0.15
- cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*range: <=15.006.30121
- cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*range: <=15.010.20060
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*+ 3 more
- cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*range: <=15.006.30121
- cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*range: <=15.010.20060
- (no CPE)range: <11.0.16
- (no CPE)range: <15.006.30172
- Range: <15.016.20039
Patches
Vulnerability mechanics
References
3- helpx.adobe.com/security/products/acrobat/apsb16-14.htmlnvdPatchVendor Advisory
- www.securityfocus.com/bid/90508nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1035828nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.